Safari - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Safari
(Apple)

Repositories	https://github.com/WebKit/webkit
#Vulnerabilities	1430

Date	Id	Summary	Products	Score	Patch	Annotated
2017-07-20	CVE-2017-7064	An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. The issue involves the "WebKit" component. It allows attackers to bypass intended memory-read restrictions via a crafted app.	Icloud, Iphone_os, Itunes, Safari	5.5
2017-07-20	CVE-2017-7011	An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to spoof the address bar via a crafted web site that uses FRAME elements.	Iphone_os, Safari	6.5
2017-07-20	CVE-2017-7043	An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.	Icloud, Iphone_os, Itunes, Safari, Tvos	8.8
2017-07-20	CVE-2017-7040	An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.	Icloud, Iphone_os, Itunes, Safari, Tvos	8.8
2017-07-20	CVE-2017-7012	An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. The issue involves the "WebKit Web Inspector" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.	Icloud, Iphone_os, Itunes, Safari	8.8
2019-03-05	CVE-2019-6234	A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution.	Icloud, Iphone_os, Itunes, Safari, Tvos, Webkitgtk\+	8.8
2019-03-05	CVE-2019-6233	A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution.	Icloud, Iphone_os, Itunes, Safari, Tvos	8.8
2019-03-05	CVE-2019-6229	A logic issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to universal cross site scripting.	Icloud, Iphone_os, Itunes, Safari, Tvos	6.1
2019-03-05	CVE-2019-6228	A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue is fixed in iOS 12.1.3, Safari 12.0.3. Processing maliciously crafted web content may lead to a cross site scripting attack.	Iphone_os, Safari	6.1
2019-03-05	CVE-2019-6227	A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, watchOS 5.1.3, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution.	Icloud, Iphone_os, Itunes, Safari, Tvos, Watchos	8.8