4.3

CVE-2014-1345

WebKit in Apple iOS before 7.1.2 and Apple Safari before 6.1.5 and 7.x before 7.0.5 does not properly encode domain names in URLs, which allows remote attackers to spoof the address bar via a crafted web site.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppleSafari Version <= 6.1.4
AppleSafari Version6.0
AppleSafari Version6.0.1
AppleSafari Version6.0.2
AppleSafari Version6.0.3
AppleSafari Version6.0.4
AppleSafari Version6.0.5
AppleSafari Version6.1
AppleSafari Version6.1.1
AppleSafari Version6.1.2
AppleSafari Version6.1.3
AppleSafari Version7.0
AppleSafari Version7.0.1
AppleSafari Version7.0.2
AppleSafari Version7.0.3
AppleSafari Version7.0.4
AppleiPhone OS Version <= 7.1.1
AppleiPhone OS Version7.0
AppleiPhone OS Version7.0.1
AppleiPhone OS Version7.0.2
AppleiPhone OS Version7.0.3
AppleiPhone OS Version7.0.4
AppleiPhone OS Version7.0.5
AppleiPhone OS Version7.0.6
AppleiPhone OS Version7.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.62% 0.691
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.3 8.6 2.9
AV:N/AC:M/Au:N/C:N/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.