CVE List

CVE-2020-13543

Critical 8.8

A code execution vulnerability exists in the WebSocket functionality of Webkit WebKitGTK 2.30.0. A specially crafted web page can trigger a use-after-free vulnerability which can lead to remote code execution. An attacker can get a user to visit a webpage to trigger this vulnerability.

Published December 3, 2020.

Affected software

Get alerts for Webkitgtk Webkitgtk

Reference links