Vulnerabilities > Apple > Webkit

DATE CVE VULNERABILITY TITLE RISK
2017-07-20 CVE-2017-7037 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-119
8.8
8.8
2017-07-20 CVE-2017-7034 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-119
8.8
8.8
2017-07-20 CVE-2017-7030 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-119
8.8
8.8
2017-07-20 CVE-2017-7020 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-119
8.8
8.8
2017-07-20 CVE-2017-7019 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-119
8.8
8.8
2017-07-20 CVE-2017-7018 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-119
8.8
8.8
2017-07-20 CVE-2017-7006 Information Exposure Through Discrepancy vulnerability in Apple products
An issue was discovered in certain Apple products.
network
high complexity
apple CWE-203
5.3
5.3
2016-07-22 CVE-2016-4592 Resource Exhaustion vulnerability in multiple products
WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to cause a denial of service (memory consumption) via a crafted web site.
network
low complexity
apple webkitgtk CWE-400
6.5
6.5
2016-07-22 CVE-2016-4591 Improper Access Control vulnerability in Apple Webkit
WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 mishandles the location variable, which allows remote attackers to access the local filesystem via unspecified vectors.
network
low complexity
apple CWE-284
7.5
7.5
2016-07-22 CVE-2016-4590 Improper Input Validation vulnerability in Apple Safari
WebKit in Apple iOS before 9.3.3 and Safari before 9.1.2 mishandles about: URLs, which allows remote attackers to bypass the Same Origin Policy via a crafted web site.
network
low complexity
apple CWE-20
5.4
5.4