CVSS Base Vector:
The remote host is missing an update for the 'webkit2gtk'
Linux Distribution Package(s) announced via the DSA-4558-1 advisory.
Checks if a vulnerable Linux Distribution Package version is present on the target host.
Several vulnerabilities have been discovered in the webkit2gtk web engine:
Sergei Glazunov discovered that maliciously crafted web content
may lead to universal cross site scripting.
Wen Xu discovered that maliciously crafted web content may lead to
arbitrary code execution.
Pierre Reimertz discovered that visiting a maliciously crafted
website may reveal browsing history.
Eliya Stein discovered that maliciously crafted web content may
violate iframe sandboxing policy.
'webkit2gtk' Linux Distribution Package(s) on Debian Linux.
For the stable distribution (buster), these problems have been fixed in
We recommend that you upgrade your webkit2gtk Linux Distribution Packages.
Linux Distribution Package
Debian Local Security Checks
Find and Fix this Vulnerability:
Mageni can help you to find out if you have this or more vulnerabilities exposing you to hackers, ransomware and malware: Download Mageni's Free Edition
NVD CVE ID: