CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-10222
https://notcve.org/view.php?id=CVE-2016-10222
runtime/JSONObject.cpp in JavaScriptCore in WebKit, as distributed in Safari Technology Preview Release 18, allows remote attackers to cause a denial of service (segmentation violation and application crash) via crafted JavaScript code that triggers a "type confusion" in the JSON.stringify function. runtime/JSONObject.cpp en JavaScriptCore en WebKit, as distribuido en Safari Technology Preview Release 18, permite a atacantes remotos provocar una denegación de servicio (violación de segmentación y caída de la aplicación) a través de un código JavaScript manipulado que desencadena una "confusión tipo" en la función JSON.stringify. • http://trac.webkit.org/changeset/208123 https://bugs.webkit.org/show_bug.cgi?id=164123 • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 12%CPEs: 3EXPL: 2CVE-2017-2476 – Apple WebKit - 'WebCore::toJS' Use-After-Free
https://notcve.org/view.php?id=CVE-2017-2476
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.3 está afectado. • https://www.exploit-db.com/exploits/41814 http://www.securityfocus.com/bid/97130 http://www.securitytracker.com/id/1038137 https://bugs.chromium.org/p/project-zero/issues/detail?id=1114 https://security.gentoo.org/glsa/201706-15 https://support.apple.com/HT207600 https://support.apple.com/HT207601 https://support.apple.com/HT207617 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 4%CPEs: 3EXPL: 1CVE-2017-2469 – Apple WebKit - 'JSC::SymbolTableEntry::isWatchable' Heap Buffer Overflow
https://notcve.org/view.php?id=CVE-2017-2469
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.3 está afectado. • https://www.exploit-db.com/exploits/41869 http://www.securityfocus.com/bid/97130 http://www.securitytracker.com/id/1038137 https://security.gentoo.org/glsa/201706-15 https://support.apple.com/HT207600 https://support.apple.com/HT207601 https://support.apple.com/HT207617 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 4%CPEs: 3EXPL: 1CVE-2017-2468 – Apple WebKit - 'Document::adoptNode' Use-After-Free
https://notcve.org/view.php?id=CVE-2017-2468
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.3 está afectado. • https://www.exploit-db.com/exploits/41868 http://www.securityfocus.com/bid/97130 http://www.securitytracker.com/id/1038137 https://security.gentoo.org/glsa/201706-15 https://support.apple.com/HT207600 https://support.apple.com/HT207601 https://support.apple.com/HT207617 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 7%CPEs: 3EXPL: 1CVE-2017-2466 – Apple WebKit - 'ComposedTreeIterator::traverseNextInShadowTree' Use-After-Free
https://notcve.org/view.php?id=CVE-2017-2466
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.3 está afectado. • https://www.exploit-db.com/exploits/41812 http://www.securityfocus.com/bid/97130 http://www.securitytracker.com/id/1038137 https://bugs.chromium.org/p/project-zero/issues/detail?id=1097 https://security.gentoo.org/glsa/201706-15 https://support.apple.com/HT207600 https://support.apple.com/HT207601 https://support.apple.com/HT207617 https://twitter.com/ifsecure/status/849292853792657413 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •