suse · CVE-2015-1126

Quick triage

Priority: medium Published: 2021-05-30 13:27:06 UTC Updated: 2024-07-26 01:44:51 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2015-1126 severity moderate: SUSE including 6 source package names (libjavascriptcoregtk-1_0-0, libjavascriptcoregtk-1_0-0-32bit, libwebkitgtk-1_0-0, libwebkitgtk-1_0-0-32bit, libwebkitgtk2-lang, webkitgtk), 6 product×package rows across 1 product lines (SUSE Linux Enterprise Workstation Extension 12 SP5): Known Not Affected 6.

Description:

WebKit, as used in Apple iOS before 8.3 and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, does not properly handle the userinfo field in FTP URLs, which allows remote attackers to trigger incorrect resource access via unspecified vectors.

cvelogic Threat Intelligence