Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Webkit
(Apple)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 258 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2016-07-22 | CVE-2016-4587 | WebKit in Apple iOS before 9.3.3 and tvOS before 9.2.2 allows remote attackers to obtain sensitive information from uninitialized process memory via a crafted web site. | Webkit | 6.5 | ||
| 2016-07-22 | CVE-2016-4585 | Cross-site scripting (XSS) vulnerability in the WebKit Page Loading implementation in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to inject arbitrary web script or HTML via an HTTP response specifying redirection that is mishandled by Safari. | Webkit | 6.1 | ||
| 2016-07-22 | CVE-2016-4583 | WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to bypass the Same Origin Policy and obtain image date from an unintended web site via a timing attack involving an SVG document. | Webkit, Webkitgtk\+ | 3.1 | ||
| 2014-02-27 | CVE-2014-1270 | WebKit, as used in Apple Safari before 6.1.2 and 7.x before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-1268 and CVE-2014-1269. | Mac_os_x, Mac_os_x_server, Safari, Webkit | N/A | ||
| 2014-02-27 | CVE-2014-1269 | WebKit, as used in Apple Safari before 6.1.2 and 7.x before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-1268 and CVE-2014-1270. | Mac_os_x, Mac_os_x_server, Safari, Webkit | N/A | ||
| 2014-02-27 | CVE-2014-1268 | WebKit, as used in Apple Safari before 6.1.2 and 7.x before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-1269 and CVE-2014-1270. | Mac_os_x, Mac_os_x_server, Safari, Webkit | N/A | ||
| 2013-12-18 | CVE-2013-5228 | WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-12-16-1. | Iphone_os, Itunes, Safari, Tvos, Webkit | N/A | ||
| 2013-12-18 | CVE-2013-5225 | WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-12-16-1. | Iphone_os, Itunes, Safari, Tvos, Webkit | N/A | ||
| 2013-12-18 | CVE-2013-5199 | WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-12-16-1. | Iphone_os, Itunes, Safari, Tvos, Webkit | N/A | ||
| 2013-12-18 | CVE-2013-5198 | WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-12-16-1. | Iphone_os, Itunes, Safari, Tvos, Webkit | N/A |