CVE-2020-13543

Summary

A code execution vulnerability exists in the WebSocket functionality of Webkit WebKitGTK 2.30.0. A specially crafted web page can trigger a use-after-free vulnerability which can lead to remote code execution. An attacker can get a user to visit a webpage to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
n/aWebkitWebkit WebKitGTK 2.30.0affected

Weaknesses

  • use after free

ADP Enrichment

CVE Program Container

Additional References

References