What is CVE-2019-8720?

CVE-2019-8720 is a vulnerability in Webkitgtk, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2023-03-06.

Is CVE-2019-8720 known to be exploited?

Yes. CVE-2019-8720 is listed in the CISA Known Exploited Vulnerabilities catalog (added 2022-05-23), indicating it is being actively exploited. 3 public proof-of-concept repositories are indexed.

Buffer overflow in Webkitgtk

CVE-2019-8720

A vulnerability was found in WebKit. The flaw is triggered when processing maliciously crafted web content that may lead to arbitrary code execution. Improved memory handling addresses the multiple memory corruption issues.

Vulnerability class: Buffer Overflow

EPSS: 0.041 (88.8th percentile) — read the EPSS interpretation.

Affected products

N/a Webkitgtk — versions Fixed in webkitgtk 2.26.0

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

CISA KEV (Known Exploited Vulnerabilities)

This CVE is on the CISA KEV catalog, added on 2022-05-23. CISA KEV inclusion means CISA has confirmed in-the-wild exploitation; US federal agencies are required to remediate within a published due date.

BOD 22-01 due date: 2022-06-13.

Required action: Apply updates per vendor instructions.

Public proof-of-concept exploits

References

Frequently asked questions

What is CVE-2019-8720?: CVE-2019-8720 is a vulnerability in Webkitgtk, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2023-03-06.
Is CVE-2019-8720 known to be exploited?: Yes. CVE-2019-8720 is listed in the CISA Known Exploited Vulnerabilities catalog (added 2022-05-23), indicating it is being actively exploited. 3 public proof-of-concept repositories are indexed.