Vulnerabilities > Apple > Safari > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-04-03 CVE-2018-4270 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
A memory corruption issue was addressed with improved memory handling.
network
low complexity
apple CWE-119
6.5
2019-04-03 CVE-2018-4266 Race Condition vulnerability in Apple products
A race condition was addressed with additional validation.
network
high complexity
apple CWE-362
5.9
2019-04-03 CVE-2018-4260 Improper Input Validation vulnerability in Apple Iphone OS
An inconsistent user interface issue was addressed with improved state management.
network
low complexity
apple CWE-20
6.5
2019-04-03 CVE-2018-4195 Improper Input Validation vulnerability in Apple Safari
An inconsistent user interface issue was addressed with improved state management.
network
low complexity
apple CWE-20
6.5
2019-03-05 CVE-2019-6229 Cross-site Scripting vulnerability in Apple products
A logic issue was addressed with improved validation.
network
low complexity
apple CWE-79
6.1
2019-03-05 CVE-2019-6228 Cross-site Scripting vulnerability in Apple Iphone OS
A cross-site scripting issue existed in Safari.
network
low complexity
apple CWE-79
6.1
2019-01-11 CVE-2018-4278 In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS before 11.4.1, iCloud for Windows before 7.6, sound fetched through audio elements may be exfiltrated cross-origin.
network
low complexity
apple canonical
4.3
2018-06-08 CVE-2018-4247 Improper Input Validation vulnerability in Apple Iphone OS
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-20
6.5
2018-06-08 CVE-2018-4232 An issue was discovered in certain Apple products.
network
low complexity
apple canonical
4.3
2018-06-08 CVE-2018-4205 Improper Input Validation vulnerability in Apple Safari
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-20
6.5