CVE-2025-66286: Authorization Bypass Through User-Controlled Key in Red Hat Red Hat Enterprise Linux 6
An API design flaw in WebKitGTK and WPE WebKit allows untrusted web content to unexpectedly perform IP connections, DNS lookups, and HTTP requests. Applications expect to use the WebPage::send-request signal handler to approve or reject all network requests. However, certain types of HTTP requests bypass this signal handler.
AI Analysis
Technical Summary
This vulnerability stems from an API design flaw in WebKitGTK and WPE WebKit used in Red Hat Enterprise Linux 6. Applications expect to control network requests via the WebPage::send-request signal handler, but some HTTP requests bypass this mechanism, allowing untrusted web content to perform network operations without proper authorization. The CVSS 3.1 base score is 4.7, indicating medium severity with network attack vector, low attack complexity, no privileges required, user interaction required, scope changed, and low impact on confidentiality. No official fix or patch has been confirmed by Red Hat in the advisory.
Potential Impact
An attacker can leverage this flaw to cause untrusted web content to perform network operations such as IP connections, DNS lookups, and HTTP requests without the application's explicit approval. This could lead to unauthorized network activity originating from the affected system. The impact on confidentiality is low, and there is no impact on integrity or availability reported. No known exploitation in the wild has been documented.
Mitigation Recommendations
Patch status is not yet confirmed — check the Red Hat advisory at https://access.redhat.com/security/cve/CVE-2025-66286 for current remediation guidance. Until an official fix is available, users should consider limiting exposure to untrusted web content or applying any recommended workarounds from Red Hat. No vendor advisory states that no action is required or that the issue is already mitigated.
CVE-2025-66286: Authorization Bypass Through User-Controlled Key in Red Hat Red Hat Enterprise Linux 6
Description
An API design flaw in WebKitGTK and WPE WebKit allows untrusted web content to unexpectedly perform IP connections, DNS lookups, and HTTP requests. Applications expect to use the WebPage::send-request signal handler to approve or reject all network requests. However, certain types of HTTP requests bypass this signal handler.
CVSS v3.1
Score 4.7medium
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability stems from an API design flaw in WebKitGTK and WPE WebKit used in Red Hat Enterprise Linux 6. Applications expect to control network requests via the WebPage::send-request signal handler, but some HTTP requests bypass this mechanism, allowing untrusted web content to perform network operations without proper authorization. The CVSS 3.1 base score is 4.7, indicating medium severity with network attack vector, low attack complexity, no privileges required, user interaction required, scope changed, and low impact on confidentiality. No official fix or patch has been confirmed by Red Hat in the advisory.
Potential Impact
An attacker can leverage this flaw to cause untrusted web content to perform network operations such as IP connections, DNS lookups, and HTTP requests without the application's explicit approval. This could lead to unauthorized network activity originating from the affected system. The impact on confidentiality is low, and there is no impact on integrity or availability reported. No known exploitation in the wild has been documented.
Mitigation Recommendations
Patch status is not yet confirmed — check the Red Hat advisory at https://access.redhat.com/security/cve/CVE-2025-66286 for current remediation guidance. Until an official fix is available, users should consider limiting exposure to untrusted web content or applying any recommended workarounds from Red Hat. No vendor advisory states that no action is required or that the issue is already mitigated.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- redhat
- Date Reserved
- 2025-11-26T19:02:26.116Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
- Vendor Advisory Urls
- [{"url":"https://access.redhat.com/security/cve/CVE-2025-66286","vendor":"Red Hat"}]
Threat ID: 69ea15c187115cfb68118427
Added to database: 4/23/2026, 12:51:13 PM
Last enriched: 5/1/2026, 2:40:56 AM
Last updated: 6/5/2026, 7:37:31 PM
Views: 75
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.