Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2016-4707
HistorySep 25, 2016 - 12:00 a.m.

CVE-2016-4707

2016-09-2500:00:00
ubuntu.com
ubuntu.com
8

4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

33.2%

JSON

CFNetwork in Apple iOS before 10 and OS X before 10.12 mishandles Local
Storage deletion, which allows local users to discover the visited web
sites of arbitrary users via unspecified vectors.

Notes

Author Note
jdstrand webkit receives limited support. For details, see https://wiki.ubuntu.com/SecurityTeam/FAQ#webkit webkit in Ubuntu uses the JavaScriptCore (JSC) engine, not V8
OSVersionArchitecturePackageVersionFilename
ubuntu16.04noarchwebkit2gtk< 2.14.2-0ubuntu0.16.04.1UNKNOWN

Related

prion 1
cve 1
ubuntu 1
nessus 4
openvas 2
apple 4
mageia 1
prion
prion
Session fixation
2016-09-25 10:59:00
cve
cve
CVE-2016-4707
2016-09-25 10:59:00
ubuntu
ubuntu
WebKitGTK+ vulnerabilities
2017-01-10 00:00:00
nessus
nessus
Ubuntu 16.04 LTS : WebKitGTK+ vulnerabilities (USN-3166-1)
2017-01-11 00:00:00
Apple iOS < 10.0 Multiple Vulnerabilities
2016-10-03 00:00:00
macOS < 10.12 Multiple Vulnerabilities
2016-09-23 00:00:00
openvas
openvas
Ubuntu Update for webkit2gtk USN-3166-1
2017-01-11 00:00:00
Apple Mac OS X Multiple Vulnerabilities-01 September-2016
2016-09-28 00:00:00
apple
apple
About the security content of iOS 10
2016-09-13 00:00:00
About the security content of iOS 10 - Apple Support
2018-09-12 09:13:10
About the security content of macOS Sierra 10.12 - Apple Support
2017-01-23 05:36:06
mageia
mageia
Updated webkit2 packages fix security vulnerabilities
2017-03-02 18:11:17

4 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

33.2%

JSON
Related for UB:CVE-2016-4707
prion1cve1ubuntu1nessus4openvas2apple4mageia1