CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2014-4363 – Apple Security Advisory 2014-09-17-4
https://notcve.org/view.php?id=CVE-2014-4363
17 Sep 2014 — Safari in Apple iOS before 8 does not properly restrict the autofilling of passwords in forms, which allows remote attackers to obtain sensitive information via (1) an http web site, (2) an https web site with an unacceptable X.509 certificate, or (3) an IFRAME element. Safari en Apple iOS anterior a 8 no restringe debidamente el autocompletado de la contraseñas en formularios, lo que permite a atacantes remotos obtener información sensible a través de (1) un sitio web http, (2) un sitio web https con cerit... • http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html • CWE-255: Credentials Management Errors •
CVSS: 8.8EPSS: 0%CPEs: 18EXPL: 0CVE-2014-1388 – Apple Security Advisory 2014-08-13-1
https://notcve.org/view.php?id=CVE-2014-1388
14 Aug 2014 — WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in HT6367. WebKit, utilizado en Apple Safari anterior a 6.1.6 y 7.x anterior a 7.0.6, permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria y caída de la aplicación) a través de un sit... • http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 18EXPL: 0CVE-2014-1385 – Apple Security Advisory 2014-08-13-1
https://notcve.org/view.php?id=CVE-2014-1385
14 Aug 2014 — WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in HT6367. WebKit, utilizado en Apple Safari anterior a 6.1.6 y 7.x anterior a 7.0.6, permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria y caída de la aplicación) a través de un sit... • http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 18EXPL: 0CVE-2014-1390 – Apple Security Advisory 2014-08-13-1
https://notcve.org/view.php?id=CVE-2014-1390
14 Aug 2014 — WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in HT6367. WebKit, utilizado en Apple Safari anterior a 6.1.6 y 7.x anterior a 7.0.6, permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria y caída de la aplicación) a través de un sit... • http://secunia.com/advisories/60705 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 18EXPL: 0CVE-2014-1386 – Apple Security Advisory 2014-08-13-1
https://notcve.org/view.php?id=CVE-2014-1386
14 Aug 2014 — WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in HT6367. WebKit, utilizado en Apple Safari anterior a 6.1.6 y 7.x anterior a 7.0.6, permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria y caída de la aplicación) a través de un sit... • http://secunia.com/advisories/60705 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 18EXPL: 0CVE-2014-1384 – Apple Security Advisory 2014-08-13-1
https://notcve.org/view.php?id=CVE-2014-1384
14 Aug 2014 — WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in HT6367. WebKit, utilizado en Apple Safari anterior a 6.1.6 y 7.x anterior a 7.0.6, permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria y caída de la aplicación) a través de un sit... • http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 18EXPL: 0CVE-2014-1389 – Apple Security Advisory 2014-08-13-1
https://notcve.org/view.php?id=CVE-2014-1389
14 Aug 2014 — WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in HT6367. WebKit, utilizado en Apple Safari anterior a 6.1.6 y 7.x anterior a 7.0.6, permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria y caída de la aplicación) a través de un sit... • http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 18EXPL: 0CVE-2014-1387 – Apple Security Advisory 2014-08-13-1
https://notcve.org/view.php?id=CVE-2014-1387
14 Aug 2014 — WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in HT6367. WebKit, utilizado en Apple Safari anterior a 6.1.6 y 7.x anterior a 7.0.6, permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (corrupción de memoria y caída de la aplicación) a través de un sit... • http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 16EXPL: 0CVE-2014-1369
https://notcve.org/view.php?id=CVE-2014-1369
01 Jul 2014 — WebKit in Apple Safari before 6.1.5 and 7.x before 7.0.5 allows user-assisted remote attackers to access file: URLs by leveraging a URL drag operation that originates at a crafted web site. WebKit en Apple Safari anterior a 6.1.5 y 7.x anterior a 7.0.5 permite a atacantes remotos asistidos por usuario acceder URLs file: mediante el aprovechamiento de una operación de arrastrar que origina en un sitio web manipulado. • http://archives.neohapsis.com/archives/bugtraq/2014-06/0171.html • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 2%CPEs: 30EXPL: 0CVE-2014-1365 – Apple Security Advisory 2014-06-30-4
https://notcve.org/view.php?id=CVE-2014-1365
01 Jul 2014 — WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-06-30-1, APPLE-SA-2014-06-30-3, and APPLE-SA-2014-06-30-4. WebKit, utilizado en Apple iOS anterior a 7.1.2, Apple Safari anterior a 6.1.5 y 7.x anterior a 7.0.5, y Apple TV ant... • http://archives.neohapsis.com/archives/bugtraq/2014-06/0171.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •