6.8

CVE-2015-1068

WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other CVEs listed in APPLE-SA-2015-03-17-1.

Data is provided by the National Vulnerability Database (NVD)
AppletvOS Version <= 7.1
AppleSafari Version <= 6.2.3
AppleSafari Version7.0
AppleSafari Version7.0.1
AppleSafari Version7.0.2
AppleSafari Version7.0.3
AppleSafari Version7.0.4
AppleSafari Version7.0.5
AppleSafari Version7.0.6
AppleSafari Version7.1.0
AppleSafari Version7.1.1
AppleSafari Version7.1.2
AppleSafari Version7.1.3
AppleSafari Version8.0.0
AppleSafari Version8.0.1
AppleSafari Version8.0.2
AppleSafari Version8.0.3
AppleiPhone OS Version <= 8.2
AppleiTunes Version <= 12.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.85% 0.74
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 6.8 8.6 6.4
AV:N/AC:M/Au:N/C:P/I:P/A:P