CVE-2015-1084

2015-03-1822:00:00

apple

www.cve.org

5.9 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

73.7%

JSON

The user interface in WebKit, as used in Apple Safari before 6.2.4, 7.x before 7.1.4, and 8.x before 8.0.4, does not display URLs consistently, which makes it easier for remote attackers to conduct phishing attacks via a crafted URL.

References

lists.apple.com/archives/security-announce/2015/Apr/msg00002.html

lists.apple.com/archives/security-announce/2015/Mar/msg00004.html

www.securitytracker.com/id/1031936

support.apple.com/HT204560

support.apple.com/HT204661