Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2009-1682
HistoryJun 10, 2009 - 2:30 p.m.

CVE-2009-1682

2009-06-1014:30:00
CWE-255
[email protected]
web.nvd.nist.gov
19
apple
safari
cve
security
certificate validation
remote attack

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

6.8 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

79.4%

JSON

Apple Safari before 4.0 does not properly check for revoked Extended Validation (EV) certificates, which makes it easier for remote attackers to trick a user into accepting an invalid certificate.

Affected configurations

NVD
Node
applesafariRange4.0_beta-mac
OR
applesafariMatch0.8-mac
OR
applesafariMatch0.9-mac
OR
applesafariMatch1.0-mac
OR
applesafariMatch1.0.3-mac
OR
applesafariMatch1.1-mac
OR
applesafariMatch1.2-mac
OR
applesafariMatch1.3-mac
OR
applesafariMatch1.3.1-mac
OR
applesafariMatch1.3.2-mac
OR
applesafariMatch2.0-mac
OR
applesafariMatch2.0.2-mac
OR
applesafariMatch2.0.4-mac
OR
applesafariMatch3.0-mac
OR
applesafariMatch3.0.2-mac
OR
applesafariMatch3.0.3-mac
OR
applesafariMatch3.0.4-mac
OR
applesafariMatch3.1-mac
OR
applesafariMatch3.1.1-mac
OR
applesafariMatch3.1.2-mac
OR
applesafariMatch3.2.1-mac
OR
applesafariMatch3.2.3-mac
Node
applesafariRange3.2.3-windows
OR
applesafariMatch3.0-windows
OR
applesafariMatch3.0.1-windows
OR
applesafariMatch3.0.2-windows
OR
applesafariMatch3.0.3-windows
OR
applesafariMatch3.0.4-windows
OR
applesafariMatch3.1-windows
OR
applesafariMatch3.1.1-windows
OR
applesafariMatch3.1.2-windows
OR
applesafariMatch3.2-windows
OR
applesafariMatch3.2.1-windows
OR
applesafariMatch3.2.2-windows

Related

prion 1
nvd 1
cvelist 1
openvas 2
seebug 1
nessus 2
prion
prion
Design/Logic Flaw
2009-06-10 14:30:00
nvd
nvd
CVE-2009-1682
2009-06-10 14:30:00
cvelist
cvelist
CVE-2009-1682
2009-06-10 14:00:00
openvas
openvas
Apple Safari Multiple Vulnerabilities - 02 - (Jun 2009) - Windows
2009-06-16 00:00:00
Apple Safari Multiple Vulnerabilities June-09 (Windows) - II
2009-06-16 00:00:00
seebug
seebug
Apple Safari 4.0多个安全漏洞
2009-06-11 00:00:00
nessus
nessus
Mac OS X : Apple Safari < 4.0
2009-06-09 00:00:00
Safari < 4.0 Multiple Vulnerabilities
2009-06-09 00:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

6.8 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

79.4%

JSON
Related for CVE-2009-1682
prion1nvd1cvelist1openvas2seebug1nessus2