Safari Security Vulnerabilities and Issues — Page 3 of Safari CVE List

Lucene search

AppleSafari

166 matches found

cve•added 2019/04/03 6:29 p.m.•151 views

CVE-2018-4438

A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.

8.8CVSS7.5AI score0.36761EPSS

cve•added 2019/12/18 6:15 p.m.•151 views

CVE-2019-6201

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.

9.3CVSS8.9AI score0.00882EPSS

cve•added 2019/04/03 6:29 p.m.•150 views

CVE-2018-4272

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.

8.8CVSS8.2AI score0.00374EPSS

cve•added 2019/04/03 6:29 p.m.•149 views

CVE-2018-4267

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.

8.8CVSS8.2AI score0.00284EPSS

cve•added 2019/04/03 6:29 p.m.•149 views

CVE-2018-4306

A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.8CVSS7.6AI score0.15917EPSS

cve•added 2019/04/03 6:29 p.m.•149 views

CVE-2018-4442

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.

8.8CVSS7.9AI score0.31625EPSS

cve•added 2019/01/11 6:29 p.m.•147 views

CVE-2018-4207

In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks.

8.8CVSS7.5AI score0.00846EPSS

cve•added 2019/04/03 6:29 p.m.•147 views

CVE-2018-4359

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.8CVSS8.2AI score0.0076EPSS

cve•added 2019/04/03 6:29 p.m.•146 views

CVE-2018-4314

A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.8CVSS7.6AI score0.34513EPSS

cve•added 2019/04/03 6:29 p.m.•146 views

CVE-2018-4358

8.8CVSS8.2AI score0.00704EPSS

cve•added 2019/04/03 6:29 p.m.•146 views

CVE-2018-4392

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

8.8CVSS8.2AI score0.00695EPSS

cve•added 2019/01/11 6:29 p.m.•145 views

CVE-2018-4209

8.8CVSS7.5AI score0.00624EPSS

cve•added 2019/04/03 6:29 p.m.•145 views

CVE-2018-4323

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.8CVSS8.2AI score0.15917EPSS

cve•added 2019/04/03 6:29 p.m.•145 views

CVE-2018-4441

8.8CVSS6.4AI score0.82388EPSS

cve•added 2019/03/05 4:29 p.m.•145 views

CVE-2019-6233

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS8.3AI score0.00651EPSS

cve•added 2019/03/05 4:29 p.m.•144 views

CVE-2019-6226

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.1.3, tvOS 12.1.2, watchOS 5.1.3, Safari 12.0.3, iTunes 12.9.3 for Windows, iCloud for Windows 7.10. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS8.5AI score0.00647EPSS

cve•added 2019/03/05 4:29 p.m.•144 views

CVE-2019-6234

8.8CVSS8.3AI score0.00651EPSS

cve•added 2019/01/11 6:29 p.m.•143 views

CVE-2018-4210

In iOS before 11.3, Safari before 11.1, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, an array indexing issue existed in the handling of a function in javascript core. This issue was addressed with improved checks.

8.8CVSS7.3AI score0.00876EPSS

cve•added 2019/04/03 6:29 p.m.•142 views

CVE-2018-4378

A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12.1, tvOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

8.8CVSS7.8AI score0.00706EPSS

cve•added 2019/04/03 6:29 p.m.•139 views

CVE-2018-4315

A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.8CVSS7.6AI score0.15917EPSS

cve•added 2019/04/03 6:29 p.m.•139 views

CVE-2018-4328

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.8CVSS8.2AI score0.15917EPSS

cve•added 2019/04/03 6:29 p.m.•139 views

CVE-2018-4464

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1, tvOS 12.1.1, watchOS 5.1.2, Safari 12.0.2, iTunes 12.9.2 for Windows, iCloud for Windows 7.9.

8.8CVSS8.2AI score0.00751EPSS

cve•added 2019/04/03 6:29 p.m.•138 views

CVE-2018-4312

A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.8CVSS7.6AI score0.15917EPSS

cve•added 2019/04/03 6:29 p.m.•138 views

CVE-2018-4375

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

8.8CVSS8.1AI score0.00522EPSS

cve•added 2019/04/03 6:29 p.m.•138 views

CVE-2018-4376

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

8.8CVSS8.1AI score0.00522EPSS

cve•added 2019/01/11 6:29 p.m.•137 views

CVE-2018-4213

8.8CVSS7.5AI score0.00876EPSS

cve•added 2019/04/03 6:29 p.m.•137 views

CVE-2018-4316

A memory corruption issue was addressed with improved state management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.8CVSS7.8AI score0.00536EPSS

cve•added 2019/04/03 6:29 p.m.•137 views

CVE-2018-4373

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

8.8CVSS8.1AI score0.00522EPSS

cve•added 2019/04/03 6:29 p.m.•136 views

CVE-2018-4319

A cross-origin issue existed with "iframe" elements. This was addressed with improved tracking of security origins. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.1CVSS7.4AI score0.00208EPSS

cve•added 2019/04/03 6:29 p.m.•135 views

CVE-2018-4317

A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.8CVSS7.6AI score0.15917EPSS

cve•added 2019/04/03 6:29 p.m.•134 views

CVE-2018-4191

A memory corruption issue was addressed with improved validation. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.8CVSS7.8AI score0.00704EPSS

cve•added 2019/04/03 6:29 p.m.•130 views

CVE-2018-4197

A use after free issue was addressed with improved memory management. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.8CVSS7.6AI score0.15917EPSS

cve•added 2019/04/03 6:29 p.m.•130 views

CVE-2018-4361

A memory consumption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.8CVSS7.5AI score0.00704EPSS

cve•added 2019/04/03 6:29 p.m.•129 views

CVE-2018-4309

A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

6.1CVSS6.1AI score0.00944EPSS

cve•added 2019/12/18 6:15 p.m.•98 views

CVE-2019-8685

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may l...

9.3CVSS8.4AI score0.00974EPSS

cve•added 2019/12/18 6:15 p.m.•90 views

CVE-2019-8602

A memory corruption issue was addressed by removing the vulnerable code. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. A malicious application may be able to elevate privileges.

7.8CVSS7.7AI score0.0077EPSS

cve•added 2019/12/18 6:15 p.m.•89 views

CVE-2019-8628

Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS8.8AI score0.00588EPSS

cve•added 2019/12/18 6:15 p.m.•86 views

CVE-2019-8577

An input validation issue was addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. An application may be able to gain elevated privileges.

7.8CVSS7.5AI score0.00244EPSS

cve•added 2019/04/03 6:29 p.m.•84 views

CVE-2018-4374

A logic issue was addressed with improved validation. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

6.1CVSS6.4AI score0.0054EPSS

cve•added 2019/01/11 6:29 p.m.•77 views

CVE-2018-4277

In iOS before 11.4.1, watchOS before 4.3.2, tvOS before 11.4.1, Safari before 11.1.1, macOS High Sierra before 10.13.6, a spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation.

7.5CVSS5.7AI score0.00562EPSS

cve•added 2019/04/03 6:29 p.m.•75 views

CVE-2018-4145

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 11.3, tvOS 11.3, watchOS 4.3, Safari 11.1, iTunes 12.7.4 for Windows, iCloud for Windows 7.4.

8.8CVSS8.1AI score0.00699EPSS

cve•added 2019/04/03 6:29 p.m.•71 views

CVE-2018-4311

The issue was addressed by removing origin information. This issue affected versions prior to iOS 12, watchOS 5, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.1CVSS7.6AI score0.00443EPSS

cve•added 2019/04/03 6:29 p.m.•70 views

CVE-2018-4377

A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue affected versions prior to iOS 12.1, watchOS 5.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

6.1CVSS6AI score0.0054EPSS

cve•added 2019/12/18 6:15 p.m.•69 views

CVE-2019-8562

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows. A sandboxed process may be able to circumvent sandbox restrictions.

9.6CVSS8AI score0.00475EPSS

cve•added 2019/04/03 6:29 p.m.•67 views

CVE-2018-4409

A resource exhaustion issue was addressed with improved input validation. This issue affected versions prior to iOS 12.1, tvOS 12.1, Safari 12.0.1, iTunes 12.9.1, iCloud for Windows 7.8.

6.5CVSS6.6AI score0.00439EPSS

cve•added 2019/12/18 6:15 p.m.•67 views

CVE-2019-8556

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS8.7AI score0.00758EPSS

cve•added 2019/04/03 6:29 p.m.•64 views

CVE-2018-4360

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to iOS 12, tvOS 12, Safari 12, iTunes 12.9 for Windows, iCloud for Windows 7.7.

8.8CVSS8.1AI score0.00704EPSS

cve•added 2019/03/05 4:29 p.m.•62 views

CVE-2019-6228

A cross-site scripting issue existed in Safari. This issue was addressed with improved URL validation. This issue is fixed in iOS 12.1.3, Safari 12.0.3. Processing maliciously crafted web content may lead to a cross site scripting attack.

6.1CVSS5.8AI score0.00333EPSS

cve•added 2019/12/18 6:15 p.m.•62 views

CVE-2019-8505

A logic issue was addressed with improved validation. This issue is fixed in iOS 12.2, Safari 12.1. Enabling the Safari Reader feature on a maliciously crafted webpage may lead to universal cross site scripting.

6.1CVSS5.9AI score0.00323EPSS

cve•added 2019/04/03 6:29 p.m.•61 views

CVE-2018-4271

Multiple memory corruption issues were addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2, Safari 11.1.2, iTunes 12.8 for Windows, iCloud for Windows 7.6.

6.5CVSS7.4AI score0.00333EPSS

Total number of security vulnerabilities166