Apple

Safari

1572 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2013-1039

  • EPSS 2.31%
  • Veröffentlicht 19.09.2013 10:27:55
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit, as used in Apple iOS before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-S...

6.8

CVE-2013-1040

  • EPSS 2.31%
  • Veröffentlicht 19.09.2013 10:27:55
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit, as used in Apple iOS before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-S...

6.8

CVE-2013-1041

  • EPSS 2.31%
  • Veröffentlicht 19.09.2013 10:27:55
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit, as used in Apple iOS before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-S...

6.8

CVE-2013-1009

  • EPSS 0.67%
  • Veröffentlicht 05.06.2013 14:39:55
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit, as used in Apple Safari before 6.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2013-1023.

4.3

CVE-2013-1012

  • EPSS 0.49%
  • Veröffentlicht 05.06.2013 14:39:55
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 6.0.5 allows remote attackers to inject arbitrary web script or HTML via vectors involving IFRAME elements.

4.3

CVE-2013-1013

  • EPSS 0.3%
  • Veröffentlicht 05.06.2013 14:39:55
  • Zuletzt bearbeitet 11.04.2025 00:51:21

XSS Auditor in WebKit in Apple Safari before 6.0.5 does not properly rewrite URLs, which allows remote attackers to trigger unintended form submissions via unspecified vectors.

6.8

CVE-2013-1023

  • EPSS 0.67%
  • Veröffentlicht 05.06.2013 14:39:55
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit, as used in Apple Safari before 6.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2013-1009.

6.8

CVE-2013-0960

  • EPSS 1.19%
  • Veröffentlicht 15.03.2013 20:55:10
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit in Apple Safari before 6.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2013-0961.

6.8

CVE-2013-0961

  • EPSS 1.19%
  • Veröffentlicht 15.03.2013 20:55:10
  • Zuletzt bearbeitet 11.04.2025 00:51:21

WebKit in Apple Safari before 6.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2013-0960.

4.3

CVE-2012-5851

Exploit
  • EPSS 0.34%
  • Veröffentlicht 15.11.2012 11:58:40
  • Zuletzt bearbeitet 11.04.2025 00:51:21

html/parser/XSSAuditor.cpp in WebCore in WebKit, as used in Google Chrome through 22 and Safari 5.1.7, does not consider all possible output contexts of reflected data, which makes it easier for remote attackers to bypass a cross-site scripting (XSS)...