Early Access — Mondoo Vulnerability Intelligence is currently in preview.
A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosure that can reveal any file the user is permitted to read via abusing the file drag-and-drop mechanism where WebKitGTK does not verify that drag operations originate from outside the browser.
Exploitability
AV:NAC:LPR:NUI:RScope
S:CImpact
C:HI:NA:N7.4/CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N