Apple

Safari

1572 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.3

CVE-2016-1778

  • EPSS 1.21%
  • Veröffentlicht 24.03.2016 01:59:45
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit in Apple iOS before 9.3 and Safari before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.

4.3

CVE-2016-1772

  • EPSS 0.3%
  • Veröffentlicht 24.03.2016 01:59:40
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Top Sites feature in Apple Safari before 9.1 mishandles cookie storage, which makes it easier for remote web servers to track users via unspecified vectors.

7.1

CVE-2016-1771

  • EPSS 0.48%
  • Veröffentlicht 24.03.2016 01:59:39
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Downloads feature in Apple Safari before 9.1 mishandles file expansion, which allows remote attackers to cause a denial of service via a crafted web site.

8.1

CVE-2016-1762

Exploit
  • EPSS 8.58%
  • Veröffentlicht 24.03.2016 01:59:30
  • Zuletzt bearbeitet 17.12.2025 22:15:52

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

4.3

CVE-2009-2197

  • EPSS 0.38%
  • Veröffentlicht 24.03.2016 01:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Apple Safari before 9.1 allows remote attackers to spoof the user interface via a web page that places text in a crafted context, leading to unintended use of that text within a Safari dialog.

4.3

CVE-2016-1728

  • EPSS 0.76%
  • Veröffentlicht 01.02.2016 11:59:13
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Cascading Style Sheets (CSS) implementation in Apple iOS before 9.2.1 and Safari before 9.0.3 mishandles the "a:visited button" selector during height processing, which makes it easier for remote attackers to obtain sensitive browser-history info...

9.3

CVE-2016-1727

  • EPSS 0.9%
  • Veröffentlicht 01.02.2016 11:59:12
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 9.2.1, Safari before 9.0.3, and tvOS before 9.1.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-...

9.3

CVE-2016-1726

  • EPSS 1.7%
  • Veröffentlicht 01.02.2016 11:59:11
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 9.2.1 and Safari before 9.0.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-1723 and CVE-2016-17...

9.3

CVE-2016-1725

  • EPSS 1.7%
  • Veröffentlicht 01.02.2016 11:59:10
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 9.2.1 and Safari before 9.0.3, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-1723 and CVE-2016-17...

8.8

CVE-2016-1724

  • EPSS 1.01%
  • Veröffentlicht 01.02.2016 11:59:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 9.2.1, Safari before 9.0.3, and tvOS before 9.1.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2016-...