VDB

GCVE-110-NCSC-2026-63

GCVE-110-NCSC-2026-63
Advisory PublishedCVSS 8.8/10
Vulnetix · Advisory published February 13, 2026
The webkit2gtk3 update to version 2.50.4 addresses multiple security vulnerabilities, including memory corruption and buffer overflow, while a high-severity out of bounds memory access vulnerability in ANGLE affects Google Chrome and other Chromium-based browsers.

Weaknesses (CWE)

CWE-787Out-of-bounds WriteCWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-79Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')CWE-285Improper AuthorizationCWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')CWE-416Use After FreeCWE-20Improper Input ValidationCWE-200Exposure of Sensitive Information to an Unauthorized ActorCWE-693Protection Mechanism FailureCWE-400Uncontrolled Resource ConsumptionCWE-269Improper Privilege ManagementCWE-770Allocation of Resources Without Limits or ThrottlingCWE-59Improper Link Resolution Before File Access ('Link Following')CWE-125Out-of-bounds ReadCWE-862Missing AuthorizationCWE-284Improper Access ControlCWE-277Insecure Inherited PermissionsCWE-362Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Risk Scores

CVSS 3.1
8.8/10
High · CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersionsPlatforms
Applevers:unknown/*

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

73,685 records in the GCVE database · Updated July 18, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›