CVE-2015-3748
- EPSS 2.67%
- Veröffentlicht 16.08.2015 23:59:21
- Zuletzt bearbeitet 06.05.2026 22:30:45
WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site...
CVE-2015-3747
- EPSS 2.67%
- Veröffentlicht 16.08.2015 23:59:20
- Zuletzt bearbeitet 06.05.2026 22:30:45
WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site...
CVE-2015-3745
- EPSS 2.67%
- Veröffentlicht 16.08.2015 23:59:18
- Zuletzt bearbeitet 06.05.2026 22:30:45
WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site...
CVE-2015-3743
- EPSS 2.67%
- Veröffentlicht 16.08.2015 23:59:16
- Zuletzt bearbeitet 06.05.2026 22:30:45
WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site...
CVE-2015-3741
- EPSS 2.67%
- Veröffentlicht 16.08.2015 23:59:14
- Zuletzt bearbeitet 06.05.2026 22:30:45
WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site...
CVE-2015-3731
- EPSS 2.67%
- Veröffentlicht 16.08.2015 23:59:03
- Zuletzt bearbeitet 06.05.2026 22:30:45
WebKit, as used in Apple iOS before 8.4.1 and Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site...
CVE-2015-4493
- EPSS 7.36%
- Veröffentlicht 16.08.2015 01:59:21
- Zuletzt bearbeitet 06.05.2026 22:30:45
Heap-based buffer overflow in the stagefright::ESDS::parseESDescriptor function in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via an invalid size field in an esds c...
CVE-2015-4492
- EPSS 5.05%
- Veröffentlicht 16.08.2015 01:59:20
- Zuletzt bearbeitet 06.05.2026 22:30:45
Use-after-free vulnerability in the XMLHttpRequest::Open implementation in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 might allow remote attackers to execute arbitrary code via a SharedWorker object that makes recursive calls to the...
CVE-2015-4491
- EPSS 8.4%
- Veröffentlicht 16.08.2015 01:59:19
- Zuletzt bearbeitet 06.05.2026 22:30:45
Integer overflow in the make_filter_table function in pixops/pixops.c in gdk-pixbuf before 2.31.5, as used in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 on Linux, Google Chrome on Linux, and other products, allows remote attackers t...
CVE-2015-4490
- EPSS 2.95%
- Veröffentlicht 16.08.2015 01:59:18
- Zuletzt bearbeitet 06.05.2026 22:30:45
The nsCSPHostSrc::permits function in dom/security/nsCSPUtils.cpp in Mozilla Firefox before 40.0 does not implement the Content Security Policy Level 2 exceptions for the blob, data, and filesystem URL schemes during wildcard source-expression matchi...