VulnerableCode Vulnerability Details

Search for vulnerabilities

System	Score	Found at
cvssv3	8.8	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8689.json
epss	0.30057	https://api.first.org/data/v1/epss?cve=CVE-2019-8689
epss	0.30057	https://api.first.org/data/v1/epss?cve=CVE-2019-8689
epss	0.30057	https://api.first.org/data/v1/epss?cve=CVE-2019-8689
epss	0.30057	https://api.first.org/data/v1/epss?cve=CVE-2019-8689
epss	0.30057	https://api.first.org/data/v1/epss?cve=CVE-2019-8689
epss	0.30057	https://api.first.org/data/v1/epss?cve=CVE-2019-8689
epss	0.30057	https://api.first.org/data/v1/epss?cve=CVE-2019-8689
epss	0.30057	https://api.first.org/data/v1/epss?cve=CVE-2019-8689

System

Score

Found at

cvssv3

8.8

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8689.json

epss

0.30057

https://api.first.org/data/v1/epss?cve=CVE-2019-8689

epss

0.30057

https://api.first.org/data/v1/epss?cve=CVE-2019-8689

epss

0.30057

https://api.first.org/data/v1/epss?cve=CVE-2019-8689

epss

0.30057

https://api.first.org/data/v1/epss?cve=CVE-2019-8689

epss

0.30057

https://api.first.org/data/v1/epss?cve=CVE-2019-8689

epss

0.30057

https://api.first.org/data/v1/epss?cve=CVE-2019-8689

epss

0.30057

https://api.first.org/data/v1/epss?cve=CVE-2019-8689

epss

0.30057

https://api.first.org/data/v1/epss?cve=CVE-2019-8689

Reference id

Reference type

URL

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8689.json

https://api.first.org/data/v1/epss?cve=CVE-2019-8689

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8644

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8649

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8658

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8666

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8669

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8671

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8672

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8673

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8674

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8676

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8677

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8678

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8679

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8680

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8681

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8683

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8684

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8686

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8687

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8688

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8689

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8690

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8707

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8719

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8733

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8763

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8765

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8821

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8822

1876657

https://bugzilla.redhat.com/show_bug.cgi?id=1876657

CVE-2019-8689

Exploit

https://bugs.chromium.org/p/project-zero/issues/detail?id=1876

CVE-2019-8689

Exploit

https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/47316.txt

GLSA-201909-05

https://security.gentoo.org/glsa/201909-05

RHSA-2019:3553

https://access.redhat.com/errata/RHSA-2019:3553

RHSA-2020:4035

https://access.redhat.com/errata/RHSA-2020:4035

USN-4130-1

https://usn.ubuntu.com/4130-1/

Data source	Exploit-DB
Date added	Aug. 29, 2019
Description	Webkit JSC: JIT - Uninitialized Variable Access in ArgumentsEliminationPhase::transform
Ransomware campaign use	Known
Source publication date	Aug. 29, 2019
Exploit type	dos
Platform	multiple
Source update date	Aug. 29, 2019
Source URL	https://bugs.chromium.org/p/project-zero/issues/detail?id=1876

Exploit-DB

Aug. 29, 2019

Webkit JSC: JIT - Uninitialized Variable Access in ArgumentsEliminationPhase::transform

Known

Aug. 29, 2019

dos

multiple

Aug. 29, 2019

https://bugs.chromium.org/p/project-zero/issues/detail?id=1876

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Attack Vector (AV)

Attack Complexity (AC)

Privileges Required (PR)

User Interaction (UI)

Scope (S)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:00:31.005988+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/201909-05	38.0.0

2026-04-01T13:00:31.005988+00:00

Gentoo Importer

Import

https://security.gentoo.org/glsa/201909-05

38.0.0

Vulnerability ID	VCID-9cya-3fan-c7cw
Aliases	CVE-2019-8689
Summary	Multiple vulnerabilities have been found in WebkitGTK+, the worst of which could result in the arbitrary execution of code.
Status	Published
Exploitability	2.0
Weighted Severity	7.9
Risk	10.0
Affected and Fixed Packages	Package Details

Percentile	0.96626
EPSS Score	0.30057
Published At	April 1, 2026, 12:55 p.m.