Apple

Safari

1622 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
Exploit
  • EPSS 1.6%
  • Veröffentlicht 03.05.2011 22:55:01
  • Zuletzt bearbeitet 16.06.2026 23:29:21

Use-after-free vulnerability in Google Chrome before 11.0.696.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the ruby element and Cascading Style Sheets (CSS) token sequences.

Exploit
  • EPSS 1.65%
  • Veröffentlicht 03.05.2011 22:55:01
  • Zuletzt bearbeitet 16.06.2026 23:29:22

Use-after-free vulnerability in the WebSockets implementation in Google Chrome before 11.0.696.57 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

  • EPSS 1.82%
  • Veröffentlicht 03.05.2011 22:55:01
  • Zuletzt bearbeitet 16.06.2026 23:29:22

Google Chrome before 11.0.696.57 does not properly handle DOM id maps, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "dangling pointers."

  • EPSS 1.82%
  • Veröffentlicht 25.03.2011 19:55:01
  • Zuletzt bearbeitet 16.06.2026 23:29:06

WebKit, as used in Google Chrome before 10.0.648.204 and Apple Safari before 5.0.6, does not properly handle node parentage, which allows remote attackers to cause a denial of service (DOM tree corruption), conduct cross-site scripting (XSS) attacks,...

  • EPSS 2.01%
  • Veröffentlicht 25.03.2011 19:55:01
  • Zuletzt bearbeitet 16.06.2026 23:29:06

Google Chrome before 10.0.648.204 does not properly handle SVG text, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale pointer."

  • EPSS 1.98%
  • Veröffentlicht 25.03.2011 19:55:00
  • Zuletzt bearbeitet 16.06.2026 23:29:05

Use-after-free vulnerability in the HTMLCollection implementation in Google Chrome before 10.0.648.204 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

  • EPSS 1.59%
  • Veröffentlicht 11.03.2011 22:55:03
  • Zuletzt bearbeitet 16.06.2026 23:26:55

WebKit, as used in Apple Safari before 5.0.4 and iOS before 4.3, does not properly handle unspecified "cached resources," which allows remote attackers to cause a denial of service (resource unavailability) via a crafted web site that conducts a cach...

  • EPSS 2.06%
  • Veröffentlicht 11.03.2011 22:55:03
  • Zuletzt bearbeitet 16.06.2026 23:26:55

The HTML5 drag and drop functionality in WebKit in Apple Safari before 5.0.4 allows user-assisted remote attackers to bypass the Same Origin Policy and obtain sensitive information via vectors related to the dragging of content. NOTE: this might ove...

  • EPSS 3.34%
  • Veröffentlicht 11.03.2011 22:55:03
  • Zuletzt bearbeitet 16.06.2026 23:26:56

The windows functionality in WebKit in Apple Safari before 5.0.4 allows remote attackers to bypass the Same Origin Policy, and force the upload of arbitrary local files from a client computer, via a crafted web site.

  • EPSS 1.48%
  • Veröffentlicht 11.03.2011 22:55:03
  • Zuletzt bearbeitet 16.06.2026 23:26:56

WebKit in Apple Safari before 5.0.4, when the Web Inspector is used, does not properly handle the window.console._inspectorCommandLineAPI property, which allows user-assisted remote attackers to bypass the Same Origin Policy and conduct cross-site sc...