Safari - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Safari
(Apple)

Repositories	https://github.com/WebKit/webkit
#Vulnerabilities	1470

Date	Id	Summary	Products	Score	Patch	Annotated
2021-09-08	CVE-2021-30698	A null pointer dereference was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.4, Safari 14.1.1, iOS 14.6 and iPadOS 14.6. A remote attacker may be able to cause a denial of service.	Ipados, Iphone_os, Macos, Safari	7.5
2021-10-19	CVE-2021-30846	A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, Safari 15, tvOS 15, iOS 15 and iPadOS 15, watchOS 8. Processing maliciously crafted web content may lead to arbitrary code execution.	Ipados, Iphone_os, Macos, Safari, Tvos, Watchos, Debian_linux, Fedora	7.8
2021-10-19	CVE-2021-30848	A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, Safari 15, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to code execution.	Ipados, Iphone_os, Macos, Safari	7.8
2021-10-19	CVE-2021-30849	Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, watchOS 8, Safari 15, tvOS 15, iOS 15 and iPadOS 15, iTunes 12.12 for Windows. Processing maliciously crafted web content may lead to arbitrary code execution.	Ipados, Iphone_os, Itunes, Macos, Safari, Tvos, Watchos	7.8
2021-10-28	CVE-2021-30809	A use after free issue was addressed with improved memory management. This issue is fixed in Safari 15, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to arbitrary code execution.	Ipados, Iphone_os, Macos, Safari, Tvos, Watchos	8.8
2021-10-28	CVE-2021-30818	A type confusion issue was addressed with improved state handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, tvOS 15, iOS 15 and iPadOS 15, Safari 15, watchOS 8. Processing maliciously crafted web content may lead to arbitrary code execution.	Ipados, Iphone_os, Macos, Safari, Tvos, Watchos	8.8
2021-10-28	CVE-2021-30823	A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12.0.1, iOS 14.8 and iPadOS 14.8, tvOS 15, Safari 15, watchOS 8. An attacker in a privileged network position may be able to bypass HSTS.	Ipados, Iphone_os, Macos, Safari, Tvos, Watchos	6.5
2021-10-28	CVE-2021-30836	An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.8 and iPadOS 14.8, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing a maliciously crafted audio file may disclose restricted memory.	Ipados, Iphone_os, Macos, Safari, Tvos, Watchos	5.5
2022-03-18	CVE-2022-22589	A validation issue was addressed with improved input sanitization. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. Processing a maliciously crafted mail message may lead to running arbitrary javascript.	Ipados, Iphone_os, Mac_os_x, Macos, Safari, Tvos, Watchos	6.1
2022-03-18	CVE-2022-22590	A use after free issue was addressed with improved memory management. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. Processing maliciously crafted web content may lead to arbitrary code execution.	Ipados, Iphone_os, Macos, Safari, Tvos, Watchos, Webkitgtk	8.8