CVE-2025-66287

HIGH

WebKitGTK - Memory Corruption

Title source: llm

Description

A flaw was found in WebKitGTK. Processing malicious web content can cause an unexpected process crash due to improper memory handling.

References (14)

Core 14

Core References

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2025:22789

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2025:22790

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2025:23110

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2025:23433

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2025:23434

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2025:23451

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2025:23452

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2025:23583

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2025:23591

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2025:23742

Vendor Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2025:23743

Vendor Advisory vdb-entry x_refsource_redhat

https://access.redhat.com/security/cve/CVE-2025-66287

Various Sources

https://webkitgtk.org/security/WSA-2025-0009.html

Issue Tracking issue-tracking x_refsource_redhat

https://bugzilla.redhat.com/show_bug.cgi?id=2418857

Scores

CVSS v3 8.8

EPSS 0.0010

EPSS Percentile 27.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-120

Status published

Products (18)

Red Hat/Red Hat Enterprise Linux 6

Red Hat/Red Hat Enterprise Linux 7

Red Hat/Red Hat Enterprise Linux 7 Extended Lifecycle Support 0:2.50.3-2.el7_9

Red Hat/Red Hat Enterprise Linux 8 0:2.50.3-1.el8_10

Red Hat/Red Hat Enterprise Linux 8.2 Advanced Update Support 0:2.50.3-2.el8_2

Red Hat/Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 0:2.50.3-2.el8_4

Red Hat/Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 0:2.50.3-2.el8_4

Red Hat/Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 0:2.50.3-2.el8_6

Red Hat/Red Hat Enterprise Linux 8.6 Telecommunications Update Service 0:2.50.3-2.el8_6

Red Hat/Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 0:2.50.3-2.el8_6

... and 8 more

Published Dec 04, 2025

Tracked Since Feb 18, 2026