5.4

CVE-2014-4452

WebKit, as used in Apple iOS before 8.1.1 and Apple TV before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-4462.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AppletvOS Version >= 6.0 < 7.0.2
AppleiPhone OS Version >= 8.0 < 8.1.1
AppleSafari Version >= 6.0 < 6.2.1
AppleSafari Version >= 7.0 < 7.1.1
AppleSafari Version >= 8.0 < 8.0.1
AppleiTunes Version < 12.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.33% 0.672
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.4 5.5 6.4
AV:A/AC:M/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.apple.com/archives/security-announce/2014/Dec/msg00000.html
Patch
Vendor Advisory
Mailing List
http://support.apple.com/kb/HT6596
Vendor Advisory
http://lists.apple.com/archives/security-announce/2015/Jun/msg00006.html
Patch
Vendor Advisory
Mailing List
https://support.apple.com/kb/HT204949
Vendor Advisory
http://lists.apple.com/archives/security-announce/2014/Nov/msg00000.html
Vendor Advisory
Mailing List
http://secunia.com/advisories/62504
Third Party Advisory
https://support.apple.com/en-us/HT204418
Vendor Advisory
https://support.apple.com/en-us/HT6590
Vendor Advisory
http://lists.apple.com/archives/security-announce/2014/Nov/msg00002.html
Vendor Advisory
Mailing List
http://secunia.com/advisories/62505
Third Party Advisory
http://www.securityfocus.com/bid/71137
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1031231
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/98771
Third Party Advisory
VDB Entry
https://support.apple.com/en-us/HT204420
Vendor Advisory
https://support.apple.com/en-us/HT6592
Vendor Advisory