Vulnerabilities > Apple > Safari > 2.0

DATE CVE VULNERABILITY TITLE RISK
2020-12-08 CVE-2020-9945 Improper Restriction of Rendered UI Layers or Frames vulnerability in Apple mac OS X
A spoofing issue existed in the handling of URLs.
network
apple CWE-1021
4.3
2020-12-08 CVE-2020-9942 Improper Restriction of Rendered UI Layers or Frames vulnerability in Apple Safari
An inconsistent user interface issue was addressed with improved state management.
network
apple CWE-1021
4.3
2020-11-03 CVE-2020-15969 Use After Free vulnerability in multiple products
Use after free in WebRTC in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google debian fedoraproject opensuse apple CWE-416
8.8
2020-10-27 CVE-2020-9932 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
A memory corruption issue was addressed with improved validation.
network
apple CWE-119
6.8
2020-10-27 CVE-2020-9860 Unspecified vulnerability in Apple Safari
A custom URL scheme handling issue was addressed with improved input validation.
network
apple
5.8
2020-10-27 CVE-2020-3864 Origin Validation Error vulnerability in multiple products
A logic issue was addressed with improved validation.
local
low complexity
apple redhat CWE-346
7.2
2020-10-27 CVE-2020-3852 Improper Input Validation vulnerability in Apple Safari
A logic issue was addressed with improved validation.
network
low complexity
apple CWE-20
5.0
2020-10-27 CVE-2019-8898 Insecure Storage of Sensitive Information vulnerability in Apple products
An information disclosure issue existed in the handling of the Storage Access API.
network
apple CWE-922
4.3
2020-10-27 CVE-2019-8848 Improper Privilege Management vulnerability in Apple products
This issue was addressed with improved checks.
network
apple CWE-269
6.8
2020-10-27 CVE-2019-8846 Use After Free vulnerability in multiple products
A use after free issue was addressed with improved memory management.
network
apple redhat CWE-416
critical
9.3