Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple safari 1.1 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2009-1699
The XSL stylesheet implementation in WebKit in Apple Safari prior to 4.0, iPhone OS 1.0 up to and including 2.2.1, and iPhone OS for iPod touch 1.1 up to and including 2.2.1 does not properly handle XML external entities, which allows remote malicious users to read arbitrary file...
Apple Iphone Os
Apple Safari
Canonical Ubuntu Linux 9.04
Canonical Ubuntu Linux 8.10
Opensuse Opensuse 11.2
Opensuse Opensuse 11.3
1 EDB exploit
6.5
CVSSv3
CVE-2023-42956
The issue was addressed with improved memory handling. This issue is fixed in Safari 17.2, iOS 17.2 and iPadOS 17.2, macOS Sonoma 14.2. Processing web content may lead to a denial-of-service.
Apple Macos
Apple Safari
Apple Iphone Os
Apple Ipados
NA
CVE-2024-23263
A logic issue was addressed with improved validation. This issue is fixed in tvOS 17.4, macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, watchOS 10.4, iOS 16.7.6 and iPadOS 16.7.6, Safari 17.4. Processing maliciously crafted web content may prevent Content Security Poli...
NA
CVE-2024-23284
A logic issue was addressed with improved state management. This issue is fixed in tvOS 17.4, macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, watchOS 10.4, iOS 16.7.6 and iPadOS 16.7.6, Safari 17.4. Processing maliciously crafted web content may prevent Content Securit...
NA
CVE-2024-23254
The issue was addressed with improved UI handling. This issue is fixed in tvOS 17.4, macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, watchOS 10.4, Safari 17.4. A malicious website may exfiltrate audio data cross-origin.
NA
CVE-2013-0961
WebKit in Apple Safari prior to 6.0.3 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2013-0960.
Apple Safari 5.0.5
Apple Safari 5.1.5
Apple Safari 5.1.7
Apple Safari 5.1
Apple Safari 5.1.3
Apple Safari 4.0.1
Apple Safari 4.0.4
Apple Safari 3.0.1
Apple Safari 3.0.2
Apple Safari 3.0.4
Apple Safari 3.0.0b
Apple Safari 3.0.3b
Apple Safari 2.0
Apple Safari 2.0.2
Apple Safari 2.0.3
Apple Safari 1.0.3
Apple Safari 1.0.1
Apple Safari 1.3.2
Apple Safari 1.2.5
Apple Safari 1.3.1
Apple Safari 1.1.1
Apple Safari 5.1.6
NA
CVE-2013-0960
WebKit in Apple Safari prior to 6.0.3 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2013-0961.
Apple Safari
Apple Safari 5.1.4
Apple Safari 5.1.6
Apple Safari 5.1.1
Apple Safari 4.0.5
Apple Safari 4.0
Apple Safari 4.0.3
Apple Safari 3.0.3
Apple Safari 3.2.1
Apple Safari 3.2.2
Apple Safari 3.0.2b
Apple Safari 2.0.1
Apple Safari 2.0.3
Apple Safari 1.0.0
Apple Safari 1.3.0
Apple Safari 1.0.0b1
Apple Safari 1.2.1
Apple Safari 1.3
Apple Safari 1.1
Apple Safari 1.3.2
Apple Safari 5.0.4
Apple Safari 5.0
NA
CVE-2012-3713
Apple Safari prior to 6.0.1 does not properly handle the Quarantine attribute of HTML documents, which allows user-assisted remote malicious users to read arbitrary files by leveraging the presence of a downloaded document.
Apple Safari 3.2.1b
Apple Safari 3.2.0b
Apple Safari 5.0
Apple Safari 3
Apple Safari 3.0.2
Apple Safari 3.0.3
Apple Safari 3.1.2
Apple Safari 1.2
Apple Safari 1.3.1
Apple Safari 4.0.5
Apple Safari 3.0.4
Apple Safari 5.1.2
Apple Safari 3.1.2b
Apple Safari 3.1.1b
Apple Safari 1.1.1
Apple Safari 5.1.3
Apple Safari 2.0
Apple Safari 2.0.1
Apple Safari 1.2.1
Apple Safari 1.2.2
Apple Safari 1.1
Apple Safari 4.0.2
NA
CVE-2012-3714
The Form Autofill feature in Apple Safari prior to 6.0.1 does not restrict the filled fields to the set of fields contained in an Autofill popover, which allows remote malicious users to obtain the Me card from an Address Book via a crafted web site.
Apple Safari 3.0.1
Apple Safari 4.0.3
Apple Safari 3.2.2b
Apple Safari 3.2.2
Apple Safari 4.0.1
Apple Safari 4.0
Apple Safari 2.0.2
Apple Safari 2.0.3
Apple Safari 1.2.4
Apple Safari 1.2.5
Apple Safari 1.0
Apple Safari 1.0.3
Apple Safari 5.0.5
Apple Safari 1.3.0
Apple Safari 1.2.0
Apple Safari 3.0.1b
Apple Safari 3.0.3b
Apple Safari 5.0.6
Apple Safari 3.1.0b
Apple Safari 5.1.5
Apple Safari 5.1.6
Apple Safari 5.1.7
NA
CVE-2012-3715
Apple Safari prior to 6.0.1 makes http requests for https URIs in certain circumstances involving a paste into the address bar, which allows user-assisted remote malicious users to obtain sensitive information by sniffing the network.
Apple Safari 3.2.0b
Apple Safari 3.1.2b
Apple Safari 1.1.1
Apple Safari 5.1.3
Apple Safari 3.0.3
Apple Safari 2.0
Apple Safari 5.0.4
Apple Safari 3.2.1b
Apple Safari 5.0
Apple Safari 3
Apple Safari 3.0
Apple Safari 3.0.2
Apple Safari 1.3.2
Apple Safari 3.1.2
Apple Safari 1.3.1
Apple Safari 4.0.5
Apple Safari 4.0.4
Apple Safari 3.0.4
Apple Safari 2.0.3
Apple Safari 5.0.2
Apple Safari 4.1.2
Apple Safari 1.0b1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »