Apple

Safari

1536 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2016-4735

  • EPSS 1.65%
  • Veröffentlicht 25.09.2016 10:59:38
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit in Apple iOS before 10, Safari before 10, and tvOS before 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-4611, CVE-2016-4730...

9.6

CVE-2016-4734

  • EPSS 8.4%
  • Veröffentlicht 25.09.2016 10:59:37
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit in Apple iOS before 10, Safari before 10, and tvOS before 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-4611, CVE-2016-4730...

9.3

CVE-2016-4733

  • EPSS 0.82%
  • Veröffentlicht 25.09.2016 10:59:36
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit in Apple iOS before 10, Safari before 10, and tvOS before 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-4611, CVE-2016-4730...

9.3

CVE-2016-4731

  • EPSS 1.2%
  • Veröffentlicht 25.09.2016 10:59:35
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit in Apple iOS before 10 and Safari before 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-4729.

9.3

CVE-2016-4730

  • EPSS 1.65%
  • Veröffentlicht 25.09.2016 10:59:34
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit in Apple iOS before 10, Safari before 10, and tvOS before 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-4611, CVE-2016-4733...

9.3

CVE-2016-4729

  • EPSS 1.2%
  • Veröffentlicht 25.09.2016 10:59:33
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit in Apple iOS before 10 and Safari before 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-4731.

8.8

CVE-2016-4728

  • EPSS 1.04%
  • Veröffentlicht 25.09.2016 10:59:32
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit in Apple iOS before 10, tvOS before 10, iTunes before 12.5.1 on Windows, and Safari before 10 mishandles error prototypes, which allows remote attackers to execute arbitrary code via a crafted web site.

6.1

CVE-2016-4618

  • EPSS 0.5%
  • Veröffentlicht 25.09.2016 10:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in Safari Reader in Apple iOS before 10 and Safari before 10 allows remote attackers to inject arbitrary web script or HTML via a crafted web site, aka "Universal XSS (UXSS)."

8.8

CVE-2016-4611

  • EPSS 0.92%
  • Veröffentlicht 25.09.2016 10:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit in Apple iOS before 10, Safari before 10, and tvOS before 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-4730, CVE-2016-4733...

5.3

CVE-2016-7153

  • EPSS 2.28%
  • Veröffentlicht 06.09.2016 10:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The HTTP/2 protocol does not consider the role of the TCP congestion window in providing information about content length, which makes it easier for remote attackers to obtain cleartext data by leveraging a web-browser configuration in which third-pa...