Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-tsda-67yn-xbbt
Vulnerability ID VCID-tsda-67yn-xbbt
Aliases CVE-2017-2521
Summary Multiple vulnerabilities have been found in WebKitGTK+, the worst of which allows remote attackers to execute arbitrary code.
Status Published
Exploitability 2.0
Weighted Severity 0.1
Risk 0.2
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.05746 https://api.first.org/data/v1/epss?cve=CVE-2017-2521
epss 0.05746 https://api.first.org/data/v1/epss?cve=CVE-2017-2521
epss 0.05746 https://api.first.org/data/v1/epss?cve=CVE-2017-2521
epss 0.05746 https://api.first.org/data/v1/epss?cve=CVE-2017-2521
epss 0.05746 https://api.first.org/data/v1/epss?cve=CVE-2017-2521
epss 0.05746 https://api.first.org/data/v1/epss?cve=CVE-2017-2521
epss 0.05746 https://api.first.org/data/v1/epss?cve=CVE-2017-2521
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2017-2521
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2521
CVE-2017-2521 Exploit https://bugs.chromium.org/p/project-zero/issues/detail?id=1165
CVE-2017-2521 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42103.js
GLSA-201706-15 https://security.gentoo.org/glsa/201706-15
Data source Exploit-DB
Date added June 1, 2017
Description WebKit JSC - 'JSObject::ensureLength' ensureLengthSlow Check Failure
Ransomware campaign use Known
Source publication date June 1, 2017
Exploit type dos
Platform linux
Source update date June 1, 2017
Source URL https://bugs.chromium.org/p/project-zero/issues/detail?id=1165
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.90414
EPSS Score 0.05746
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T12:58:44.075445+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/201706-15 38.0.0