Apple

Safari

1572 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2014-4470

  • EPSS 0.84%
  • Veröffentlicht 10.12.2014 21:59:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnera...

6.8

CVE-2014-4469

  • EPSS 0.84%
  • Veröffentlicht 10.12.2014 21:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnera...

6.8

CVE-2014-4468

  • EPSS 0.84%
  • Veröffentlicht 10.12.2014 21:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnera...

7.5

CVE-2014-4466

  • EPSS 1.01%
  • Veröffentlicht 10.12.2014 21:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnera...

5

CVE-2014-4465

  • EPSS 0.98%
  • Veröffentlicht 10.12.2014 21:59:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1 allows remote attackers to bypass the Same Origin Policy via crafted Cascading Style Sheets (CSS) token sequences within an SVG file in the SRC attribute of an IMG element.

6.8

CVE-2014-4459

  • EPSS 2.97%
  • Veröffentlicht 18.11.2014 11:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in WebKit, as used in Apple OS X before 10.10.1, allows remote attackers to execute arbitrary code via crafted page objects in an HTML document.

5.4

CVE-2014-4452

  • EPSS 1.07%
  • Veröffentlicht 18.11.2014 11:59:01
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 8.1.1 and Apple TV before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2...

7.5

CVE-2014-3192

  • EPSS 1.74%
  • Veröffentlicht 08.10.2014 10:55:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in the ProcessingInstruction::setXSLStyleSheet function in core/dom/ProcessingInstruction.cpp in the DOM implementation in Blink, as used in Google Chrome before 38.0.2125.101, allows remote attackers to cause a denial of...

6.8

CVE-2014-4415

  • EPSS 1.12%
  • Veröffentlicht 18.09.2014 10:55:10
  • Zuletzt bearbeitet 12.04.2025 10:46:40

WebKit, as used in Apple iOS before 8 and Apple TV before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit ...

5

CVE-2014-4363

  • EPSS 0.76%
  • Veröffentlicht 18.09.2014 10:55:08
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Safari in Apple iOS before 8 does not properly restrict the autofilling of passwords in forms, which allows remote attackers to obtain sensitive information via (1) an http web site, (2) an https web site with an unacceptable X.509 certificate, or (3...