High

DATE	CVE	VULNERABILITY TITLE	RISK
2019-01-11	CVE-2018-4208	Improper Input Validation vulnerability in multiple products In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. network low complexity apple canonical webkitgtk CWE-20	8.8
2019-01-11	CVE-2018-4207	Improper Input Validation vulnerability in multiple products In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. network low complexity apple canonical webkitgtk CWE-20	8.8
2018-07-19	CVE-2018-12911	Out-of-bounds Write vulnerability in multiple products WebKitGTK+ 2.20.3 has an off-by-one error, with a resultant out-of-bounds write, in the get_simple_globs functions in ThirdParty/xdgmime/src/xdgmimecache.c and ThirdParty/xdgmime/src/xdgmimeglob.c. network low complexity webkitgtk canonical CWE-787	7.5
2016-07-22	CVE-2016-4592	Resource Exhaustion vulnerability in multiple products WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to cause a denial of service (memory consumption) via a crafted web site. network apple webkitgtk CWE-400	7.1
2010-12-22	CVE-2010-4577	Type Confusion vulnerability in multiple products The CSSParser::parseFontFaceSrc function in WebCore/css/CSSParser.cpp in WebKit, as used in Google Chrome before 8.0.552.224, Chrome OS before 8.0.552.343, webkitgtk before 1.2.6, and other products does not properly parse Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted local font, related to "Type Confusion." network low complexity webkitgtk google fedoraproject debian CWE-843	7.5
2010-11-06	CVE-2010-4204	Denial of Service vulnerability in Google Chrome WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1.2.6, and other products, accesses a frame object after this object has been destroyed, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors. network low complexity google webkitgtk fedoraproject	7.5
2010-11-06	CVE-2010-4197	USE After Free vulnerability in Google Chrome Use-after-free vulnerability in WebKit, as used in Google Chrome before 7.0.517.44, webkitgtk before 1.2.6, and other products, allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving text editing. network low complexity google webkitgtk fedoraproject CWE-416	7.5