CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2015-3923

Malware in sbrugna...

7.5CVSS7.6AI score0.00362EPSS

Exploits1References2

NVD•added 2018/01/12 5:29 p.m.•12 views

CVE-2015-3888

Jolla Sailfish OS before 1.1.2.16 allows remote attackers to spoof phone numbers and trigger calls to arbitrary numbers via spaces in a tel: URL...

7.5CVSS7.5AI score0.00362EPSS

Exploits1References1

Prion•added 2018/01/12 5:29 p.m.•6 views

Design/Logic Flaw

Jolla Sailfish OS before 1.1.2.16 allows remote attackers to spoof phone numbers and trigger calls to arbitrary numbers via spaces in a tel: URL...

5CVSS7.3AI score0.00362EPSS

Exploits1References1Affected Software1

CVE•added 2018/01/12 5:0 p.m.•40 views

CVE-2015-3888

CVE-2015-3888 affects Jolla Sailfish OS before 1.1.2.16. The issue is in the tel: URL handling, where spaces in the URL can be exploited to spoof the caller ID and trigger calls to arbitrary numbers. This is a remote defense/reachability concern for users and operators relying on accurate caller ...

7.5CVSS7.5AI score0.00362EPSS

Exploits1References1Affected Software1

Cvelist•added 2018/01/12 5:0 p.m.•11 views

CVE-2015-3888

Jolla Sailfish OS before 1.1.2.16 allows remote attackers to spoof phone numbers and trigger calls to arbitrary numbers via spaces in a tel: URL...

7.5AI score0.00362EPSS

Exploits1References1

NVD•added 2016/03/24 1:59 a.m.•11 views

CVE-2016-1770

The Reminders component in Apple OS X before 10.11.4 allows attackers to bypass an intended user-confirmation requirement and trigger a dialing action via a tel: URL...

6.5CVSS4.8AI score0.00233EPSS

Exploits0References3

Prion•added 2016/03/24 1:59 a.m.•14 views

Design/Logic Flaw

The Reminders component in Apple OS X before 10.11.4 allows attackers to bypass an intended user-confirmation requirement and trigger a dialing action via a tel: URL...

4.3CVSS6.3AI score0.00233EPSS

Exploits0References3Affected Software1

CVE•added 2016/03/24 1:0 a.m.•51 views

CVE-2016-1770

The CVE-2016-1770 issue affects the Reminders component in OS X El Capitan prior to 10.11.4. Root cause: a tel: URL triggering a dialing action without user confirmation due to insufficient entitlement checks. Impact: ability to trigger a call without prompting the user. Mitigation: Apple release...

6.5CVSS5.2AI score0.00233EPSS

Exploits0References3Affected Software1

Cvelist•added 2016/03/24 1:0 a.m.•17 views

CVE-2016-1770

The Reminders component in Apple OS X before 10.11.4 allows attackers to bypass an intended user-confirmation requirement and trigger a dialing action via a tel: URL...

4.9AI score0.00233EPSS

Exploits0References3

Prion•added 2011/10/14 10:55 a.m.•15 views

Design/Logic Flaw

The UIKit Alerts component in Apple iOS before 5 allows remote attackers to cause a denial of service device hang via a long tel: URL that triggers a large size for the acceptance dialog...

5CVSS6.3AI score0.00734EPSS

Exploits0References4Affected Software1

CVE•added 2011/10/14 10:0 a.m.•44 views

CVE-2011-3432

CVE-2011-3432 affects Apple iOS up to versions before 5.0, specifically the UIKit Alerts component. A malicious page can trigger a denial of service (device hang) by delivering an excessively long tel: URL that makes the acceptance dialog large. Root cause: an overly large maximum URI/text layout...

5CVSS5.9AI score0.00734EPSS

Exploits0References4Affected Software1

Cvelist•added 2009/09/21 7:0 p.m.•17 views

CVE-2009-3271

Apple Safari on iPhone OS 3.0.1 allows remote attackers to cause a denial of service application crash via a long tel: URL in the SRC attribute of an IFRAME element...

6.1AI score0.05161EPSS

Exploits2References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by