Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2024-05-14	CVE-2024-27834	The issue was addressed with improved checks. local low complexity apple webkitgtk wpewebkit fedoraproject	5.5
2024-03-08	CVE-2024-23254	The issue was addressed with improved UI handling. network low complexity apple fedoraproject wpewebkit webkitgtk	6.5
2024-03-08	CVE-2024-23263	A logic issue was addressed with improved validation. network low complexity apple wpewebkit webkitgtk fedoraproject	6.5
2024-03-08	CVE-2024-23280	Injection vulnerability in multiple products An injection issue was addressed with improved validation. network low complexity apple fedoraproject wpewebkit webkitgtk CWE-74	6.5
2024-03-08	CVE-2024-23284	A logic issue was addressed with improved state management. network low complexity apple fedoraproject wpewebkit webkitgtk	6.5
2024-02-21	CVE-2023-42843	Authentication Bypass by Spoofing vulnerability in multiple products An inconsistent user interface issue was addressed with improved state management. network low complexity apple fedoraproject wpewebkit webkitgtk CWE-290	4.3
2023-09-06	CVE-2023-32370	A logic issue was addressed with improved validation. network low complexity apple wpewebkit webkitgtk	5.3
2021-10-20	CVE-2021-42762	BubblewrapLauncher.cpp in WebKitGTK and WPE WebKit before 2.34.1 allows a limited sandbox bypass that allows a sandboxed process to trick host processes into thinking the sandboxed process is not confined by the sandbox, by abusing VFS syscalls that manipulate its filesystem namespace. local low complexity webkitgtk wpewebkit fedoraproject debian	5.3
2019-04-10	CVE-2019-11070	Data Processing Errors vulnerability in multiple products WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video (HLS, DASH, or Smooth Streaming), an error resulting in deanonymization. network low complexity wpewebkit webkitgtk CWE-19	5.3