CVE-2018-11713 in GNOME and Webkitgtk Products
Published on June 4, 2018

WebCore/platform/network/soup/SocketStreamHandleImplSoup.cpp in the libsoup network backend of WebKit, as used in WebKitGTK+ prior to version 2.20.0 or without libsoup 2.62.0, unexpectedly failed to use system proxy settings for WebSocket connections. As a result, users could be deanonymized by crafted web sites via a WebSocket connection.

Vendor Advisory NVD

Products Associated with CVE-2018-11713

stack.watch emails you whenever new vulnerabilities are published in GNOME Libsoup or Webkitgtk. Just hit a watch button to start following.

GNOME Libsoup

Webkitgtk

Exploit Probability

EPSS

0.55%

Percentile

67.68%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-11713 in GNOME and Webkitgtk ProductsPublished on June 4, 2018

Products Associated with CVE-2018-11713

Exploit Probability

CVE-2018-11713 in GNOME and Webkitgtk Products
Published on June 4, 2018