Lucene search

K

PRIOn knowledge basePRION:CVE-2015-3727

HistoryJul 03, 2015 - 2:00 a.m.

Code injection

2015-07-0302:00:00

PRIOn knowledge base

www.prio-n.com

4

6.3 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.011 Low

EPSS

Percentile

84.2%

WebKit in Apple Safari before 6.2.7, 7.x before 7.1.7, and 8.x before 8.0.7, as used in Apple iOS before 8.4 and other products, does not properly restrict rename operations on WebSQL tables, which allows remote attackers to access an arbitrary web site’s database via a crafted web site.

CPENameOperatorVersion
iphone_osle8.3
mac_os_xle10.10.3
safarieq7.0.1
safarieq8.0.2
safarieq8.0.1
safarieq7.0.3
safarieq7.0.4
safarieq7.1.0
safarieq7.1.6
safarieq8.0.6

Rows per page:

1-10 of 241

References

lists.apple.com/archives/security-announce/2015/Jun/msg00001.html

lists.apple.com/archives/security-announce/2015/Jun/msg00004.html

lists.opensuse.org/opensuse-updates/2016-03/msg00132.html

support.apple.com/kb/HT204941

support.apple.com/kb/HT204950

www.securityfocus.com/bid/75492

www.securitytracker.com/id/1032754

www.ubuntu.com/usn/USN-2937-1

6.3 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.011 Low

EPSS

Percentile

84.2%

Related for PRION:CVE-2015-3727

zdi1 cve1 ubuntucve1 securityvulns4 openvas7 nessus9 fedora5 mageia2 ubuntu1