Search for vulnerabilities
Vulnerability details: VCID-9jyt-f41r-hfdc
Vulnerability ID VCID-9jyt-f41r-hfdc
Aliases CVE-2017-1000121
Summary The UNIX IPC layer in WebKit, including WebKitGTK+ prior to 2.16.3, does not properly validate message size metadata, allowing a compromised secondary process to trigger an integer overflow and subsequent buffer overflow in the UI process. This vulnerability does not affect Apple products.
Status Published
Exploitability 0.5
Weighted Severity 0.0
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
epss 0.00647 https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
ssvc Track http://trac.webkit.org/changeset/217126/webkit
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2017-1000121
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000121
webkit http://trac.webkit.org/changeset/217126/webkit
No exploits are available.
Vector: SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-02-16T16:37:57Z/ Found at http://trac.webkit.org/changeset/217126/webkit
Exploit Prediction Scoring System (EPSS)
Percentile 0.69818
EPSS Score 0.00647
Published At July 30, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T09:17:26.304289+00:00 Vulnrichment Import https://github.com/cisagov/vulnrichment/blob/develop/2017/1000xxx/CVE-2017-1000121.json 37.0.0