Apple

Safari

1536 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2022-32863

  • EPSS 0.68%
  • Veröffentlicht 20.09.2022 21:15:10
  • Zuletzt bearbeitet 21.11.2024 07:07:07

A memory corruption issue was addressed with improved state management. This issue is fixed in Safari 15.6, macOS Monterey 12.5. Processing maliciously crafted web content may lead to arbitrary code execution.

4.3

CVE-2022-32868

  • EPSS 0.28%
  • Veröffentlicht 20.09.2022 21:15:10
  • Zuletzt bearbeitet 21.11.2024 07:07:07

A logic issue was addressed with improved state management. This issue is fixed in Safari 16, iOS 16, iOS 15.7 and iPadOS 15.7. A website may be able to track users through Safari web extensions.

8.8

CVE-2022-32893

Warnung
  • EPSS 0.21%
  • Veröffentlicht 24.08.2022 20:15:09
  • Zuletzt bearbeitet 28.02.2025 14:53:55

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.6.1 and iPadOS 15.6.1, macOS Monterey 12.5.1, Safari 15.6.1. Processing maliciously crafted web content may lead to arbitrary code execution. Appl...

4.3

CVE-2022-22654

  • EPSS 0.22%
  • Veröffentlicht 18.03.2022 18:15:14
  • Zuletzt bearbeitet 21.11.2024 06:47:12

A user interface issue was addressed. This issue is fixed in watchOS 8.5, Safari 15.4. Visiting a malicious website may lead to address bar spoofing.

8.8

CVE-2022-22620

Warnung
  • EPSS 3.88%
  • Veröffentlicht 18.03.2022 18:15:13
  • Zuletzt bearbeitet 28.02.2025 14:44:48

A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.2.1, iOS 15.3.1 and iPadOS 15.3.1, Safari 15.3 (v. 16612.4.9.1.8 and 15612.4.9.1.8). Processing maliciously crafted web content may lead to...

6.1

CVE-2022-22589

  • EPSS 1.02%
  • Veröffentlicht 18.03.2022 18:15:12
  • Zuletzt bearbeitet 21.11.2024 06:47:04

A validation issue was addressed with improved input sanitization. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. Processing a maliciously crafted mail message may lead to running arbitrary ...

8.8

CVE-2022-22590

  • EPSS 0.36%
  • Veröffentlicht 18.03.2022 18:15:12
  • Zuletzt bearbeitet 21.11.2024 06:47:04

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. Processing maliciously crafted web content may lead to arbitrary code exe...

6.5

CVE-2022-22592

  • EPSS 0.16%
  • Veröffentlicht 18.03.2022 18:15:12
  • Zuletzt bearbeitet 21.11.2024 06:47:05

A logic issue was addressed with improved state management. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. Processing maliciously crafted web content may prevent Content Security Policy from...

6.5

CVE-2022-22594

  • EPSS 0.11%
  • Veröffentlicht 18.03.2022 18:15:12
  • Zuletzt bearbeitet 21.11.2024 06:47:05

A cross-origin issue in the IndexDB API was addressed with improved input validation. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. A website may be able to track sensitive user information...

6.5

CVE-2021-30823

  • EPSS 0.5%
  • Veröffentlicht 28.10.2021 19:15:09
  • Zuletzt bearbeitet 21.11.2024 06:04:47

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12.0.1, iOS 14.8 and iPadOS 14.8, tvOS 15, Safari 15, watchOS 8. An attacker in a privileged network position may be able to bypass HSTS.