Lucene search
HistoryDec 18, 2013 - 4:04 p.m.
CVE-2013-5227
cve-2013-5227
apple safari
same origin policy
credentials discovery
autofill
subframe form fields
6.2 Medium
AI Score
Confidence
Low
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
0.006 Low
EPSS
Percentile
79.1%
Apple Safari before 6.1.1 and 7.x before 7.0.1 allows remote attackers to bypass the Same Origin Policy and discover credentials by triggering autofill of subframe form fields.
Related
prion
prion
Design/Logic Flaw
2013-12-18 16:04:00
cvelist
cvelist
CVE-2013-5227
2013-12-18 11:00:00
seebug
seebug
Apple Safari ε€δΈͺθ·¨εδΏ‘ζ―ζ³ι²ζΌζ΄
2013-12-18 00:00:00
threatpost
threatpost
Apple Fixes Security in WebKit, SAfari
2013-12-17 11:45:10
openvas
openvas
Apple Safari Multiple Vulnerabilities (Dec 2013) - Mac OS X
2013-12-24 00:00:00
securityvulns
securityvulns
APPLE-SA-2013-12-16-1 Safari 6.1.1 and Safari 7.0.1
2013-12-24 00:00:00
APPLE-SA-2014-03-10-1 iOS 7.1
2014-03-13 00:00:00
Apple iOS multiple security vulnerabilities
2014-03-31 00:00:00
nessus
nessus
Safari < 6.1.1 / 7.0.1 Multiple Vulnerabilities
2014-01-09 00:00:00
Mac OS X : Apple Safari < 6.1.1 / 7.0.1 Multiple Vulnerabilities
2013-12-17 00:00:00
6.2 Medium
AI Score
Confidence
Low
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
0.006 Low
EPSS
Percentile
79.1%
Related for CVE-2013-5227