1.9

CVE-2008-3644

Apple Safari before 3.2 does not properly prevent caching of form data for form fields that have autocomplete disabled, which allows local users to obtain sensitive information by reading the browser's page cache.

Data is provided by the National Vulnerability Database (NVD)
AppleSafari Editionwindows
AppleSafari Version <= 3.1.2
AppleSafari Version0.8
AppleSafari Version0.9
AppleSafari Version1.0
AppleSafari Version1.0 Updatebeta
AppleSafari Version1.0 Updatebeta2
AppleSafari Version1.0.3
AppleSafari Version1.1
AppleSafari Version1.1.1
AppleSafari Version1.2
AppleSafari Version1.2.1
AppleSafari Version1.2.2
AppleSafari Version1.2.3
AppleSafari Version1.2.4
AppleSafari Version1.2.5
AppleSafari Version1.3
AppleSafari Version1.3.1
AppleSafari Version1.3.2
AppleSafari Version2
AppleSafari Version2.0
AppleSafari Version2.0.1
AppleSafari Version2.0.2
AppleSafari Version2.0.3
AppleSafari Version2.0.3_417.9.3
AppleSafari Version2.0.4
AppleSafari Version2.0.4_419.3
AppleSafari Version2.0_pre
AppleSafari Version3
AppleSafari Version3.0
AppleSafari Version3.0 Editionwindows
AppleSafari Version3.0.1
AppleSafari Version3.0.1 Editionwindows
AppleSafari Version3.0.2
AppleSafari Version3.0.2 Editionwindows
AppleSafari Version3.0.3
AppleSafari Version3.0.3 Editionwindows
AppleSafari Version3.0.4
AppleSafari Version3.0.4_beta
AppleSafari Version3.0.4_beta Editionwindows
AppleSafari Version3.1
AppleSafari Version3.1.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.07% 0.175
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 1.9 3.4 2.9
AV:L/AC:M/Au:N/C:P/I:N/A:N
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.