Safari Security Vulnerabilities and Issues — Safari CVE List

Lucene search

AppleSafari

11 matches found

CVE•added 2020/04/01 6:15 p.m.•298 views

CVE-2020-3899

A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. A remote attacker may be able to cause arbitrary code executi...

9.3CVSS8.5AI score0.02676EPSS

CVE•added 2020/04/01 6:15 p.m.•215 views

CVE-2020-3894

A race condition was addressed with additional validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. An application may be able to read restricted memory.

3.1CVSS5.2AI score0.00644EPSS

CVE•added 2020/04/01 6:15 p.m.•212 views

CVE-2020-3895

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Processing maliciously crafted web content may lead to arbitra...

9.3CVSS9.1AI score0.01284EPSS

CVE•added 2020/04/01 6:15 p.m.•208 views

CVE-2020-3901

A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Processing maliciously crafted web content may lead to arbitrary ...

8.8CVSS8.9AI score0.00953EPSS

CVE•added 2020/04/01 6:15 p.m.•200 views

CVE-2020-3900

8.8CVSS9.1AI score0.00888EPSS

CVE•added 2020/04/01 6:15 p.m.•193 views

CVE-2020-3897

A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, watchOS 6.2, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. A remote attacker may be able to cause arbitrary code execution.

9.3CVSS8.8AI score0.0249EPSS

CVE•added 2020/04/01 6:15 p.m.•188 views

CVE-2020-3885

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. A file URL may be incorrectly processed.

4.3CVSS5.6AI score0.00774EPSS

CVE•added 2020/04/01 6:15 p.m.•187 views

CVE-2020-3902

An input validation issue was addressed with improved input validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Processing maliciously crafted web content may lead to a cross site script...

6.1CVSS6.5AI score0.00844EPSS

CVE•added 2020/04/01 6:15 p.m.•93 views

CVE-2020-9783

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Processing maliciously crafted web content may lead to code execution.

8.8CVSS8.6AI score0.00547EPSS

CVE•added 2020/04/01 6:15 p.m.•82 views

CVE-2020-3887

4.3CVSS5.3AI score0.00492EPSS

CVE•added 2020/04/01 6:15 p.m.•66 views

CVE-2020-9784

A logic issue was addressed with improved restrictions. This issue is fixed in Safari 13.1. A malicious iframe may use another website’s download settings.

4.3CVSS5.4AI score0.00255EPSS