Safari - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Safari
(Apple)

Repositories	https://github.com/WebKit/webkit
#Vulnerabilities	1470

Date	Id	Summary	Products	Score	Patch	Annotated
2020-02-03	CVE-2016-4676	A Cross-origin vulnerability exists in WebKit in Apple Safari before 10.0.1 when processing location attributes, which could let a remote malicious user obtain sensitive information.	Mac_os_x, Safari	N/A
2017-02-20	CVE-2016-4764	An issue was discovered in certain Apple products. iOS before 10 is affected. Safari before 10 is affected. iTunes before 12.5.1 is affected. tvOS before 10 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.	Iphone_os, Itunes, Safari, Tvos	N/A
2019-04-03	CVE-2018-4386	Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.	Icloud, Iphone_os, Itunes, Safari, Tvos, Watchos	8.8
2019-12-18	CVE-2019-7285	A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.	Icloud, Iphone_os, Itunes, Safari, Tvos	N/A
2019-12-18	CVE-2019-6237	Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution.	Icloud, Iphone_os, Itunes, Mac_os_x, Safari, Tvos	N/A
2019-12-18	CVE-2019-6201	Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.	Icloud, Iphone_os, Itunes, Safari, Tvos	N/A
2019-12-18	CVE-2019-8518	Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.	Icloud, Iphone_os, Itunes, Safari, Tvos, Watchos	N/A
2019-12-18	CVE-2019-8505	A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, Safari 12.1. Enabling the Safari Reader feature on a maliciously crafted webpage may lead to universal cross site scripting.	Iphone_os, Safari	N/A
2019-12-18	CVE-2019-8503	A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. A malicious website may be able to execute scripts in the context of another website.	Icloud, Iphone_os, Itunes, Safari, Tvos	N/A
2019-12-18	CVE-2019-7292	A validation issue was addressed with improved logic. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may result in the disclosure of process memory.	Icloud, Iphone_os, Itunes, Safari, Tvos, Watchos	N/A