Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple safari 1.1 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2023-42956
The issue was addressed with improved memory handling. This issue is fixed in Safari 17.2, iOS 17.2 and iPadOS 17.2, macOS Sonoma 14.2. Processing web content may lead to a denial-of-service.
Apple Macos
Apple Safari
Apple Iphone Os
Apple Ipados
NA
CVE-2024-23263
A logic issue was addressed with improved validation. This issue is fixed in tvOS 17.4, macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, watchOS 10.4, iOS 16.7.6 and iPadOS 16.7.6, Safari 17.4. Processing maliciously crafted web content may prevent Content Security Poli...
NA
CVE-2024-23284
A logic issue was addressed with improved state management. This issue is fixed in tvOS 17.4, macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, watchOS 10.4, iOS 16.7.6 and iPadOS 16.7.6, Safari 17.4. Processing maliciously crafted web content may prevent Content Securit...
NA
CVE-2024-23254
The issue was addressed with improved UI handling. This issue is fixed in tvOS 17.4, macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, watchOS 10.4, Safari 17.4. A malicious website may exfiltrate audio data cross-origin.
NA
CVE-2013-0961
WebKit in Apple Safari prior to 6.0.3 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2013-0960.
Apple Safari 5.0.5
Apple Safari 5.1.5
Apple Safari 5.1.7
Apple Safari 5.1
Apple Safari 5.1.3
Apple Safari 4.0.1
Apple Safari 4.0.4
Apple Safari 3.0.1
Apple Safari 3.0.2
Apple Safari 3.0.4
Apple Safari 3.0.0b
Apple Safari 3.0.3b
Apple Safari 2.0
Apple Safari 2.0.2
Apple Safari 2.0.3
Apple Safari 1.0.3
Apple Safari 1.0.1
Apple Safari 1.3.2
Apple Safari 1.2.5
Apple Safari 1.3.1
Apple Safari 1.1.1
Apple Safari 5.1.6
NA
CVE-2013-0960
WebKit in Apple Safari prior to 6.0.3 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, a different vulnerability than CVE-2013-0961.
Apple Safari
Apple Safari 5.1.4
Apple Safari 5.1.6
Apple Safari 5.1.1
Apple Safari 4.0.5
Apple Safari 4.0
Apple Safari 4.0.3
Apple Safari 3.0.3
Apple Safari 3.2.1
Apple Safari 3.2.2
Apple Safari 3.0.2b
Apple Safari 2.0.1
Apple Safari 2.0.3
Apple Safari 1.0.0
Apple Safari 1.3.0
Apple Safari 1.0.0b1
Apple Safari 1.2.1
Apple Safari 1.3
Apple Safari 1.1
Apple Safari 1.3.2
Apple Safari 5.0.4
Apple Safari 5.0
NA
CVE-2012-3713
Apple Safari prior to 6.0.1 does not properly handle the Quarantine attribute of HTML documents, which allows user-assisted remote malicious users to read arbitrary files by leveraging the presence of a downloaded document.
Apple Safari 3.2.1b
Apple Safari 3.2.0b
Apple Safari 5.0
Apple Safari 3
Apple Safari 3.0.2
Apple Safari 3.0.3
Apple Safari 3.1.2
Apple Safari 1.2
Apple Safari 1.3.1
Apple Safari 4.0.5
Apple Safari 3.0.4
Apple Safari 5.1.2
Apple Safari 3.1.2b
Apple Safari 3.1.1b
Apple Safari 1.1.1
Apple Safari 5.1.3
Apple Safari 2.0
Apple Safari 2.0.1
Apple Safari 1.2.1
Apple Safari 1.2.2
Apple Safari 1.1
Apple Safari 4.0.2
NA
CVE-2012-3714
The Form Autofill feature in Apple Safari prior to 6.0.1 does not restrict the filled fields to the set of fields contained in an Autofill popover, which allows remote malicious users to obtain the Me card from an Address Book via a crafted web site.
Apple Safari 3.0.1
Apple Safari 4.0.3
Apple Safari 3.2.2b
Apple Safari 3.2.2
Apple Safari 4.0.1
Apple Safari 4.0
Apple Safari 2.0.2
Apple Safari 2.0.3
Apple Safari 1.2.4
Apple Safari 1.2.5
Apple Safari 1.0
Apple Safari 1.0.3
Apple Safari 5.0.5
Apple Safari 1.3.0
Apple Safari 1.2.0
Apple Safari 3.0.1b
Apple Safari 3.0.3b
Apple Safari 5.0.6
Apple Safari 3.1.0b
Apple Safari 5.1.5
Apple Safari 5.1.6
Apple Safari 5.1.7
NA
CVE-2012-3715
Apple Safari prior to 6.0.1 makes http requests for https URIs in certain circumstances involving a paste into the address bar, which allows user-assisted remote malicious users to obtain sensitive information by sniffing the network.
Apple Safari 3.2.0b
Apple Safari 3.1.2b
Apple Safari 1.1.1
Apple Safari 5.1.3
Apple Safari 3.0.3
Apple Safari 2.0
Apple Safari 5.0.4
Apple Safari 3.2.1b
Apple Safari 5.0
Apple Safari 3
Apple Safari 3.0
Apple Safari 3.0.2
Apple Safari 1.3.2
Apple Safari 3.1.2
Apple Safari 1.3.1
Apple Safari 4.0.5
Apple Safari 4.0.4
Apple Safari 3.0.4
Apple Safari 2.0.3
Apple Safari 5.0.2
Apple Safari 4.1.2
Apple Safari 1.0b1
NA
CVE-2012-0682
WebKit, as used in Apple Safari prior to 6.0, allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2012-07-25-1.
Apple Safari 3.0.1
Apple Safari 4.0.3
Apple Safari 4.0.0b
Apple Safari 3.2.2b
Apple Safari 3.0
Apple Safari 2.0.4
Apple Safari 1.3.2
Apple Safari 1.2.5
Apple Safari 1.3
Apple Safari 5.1.1
Apple Safari 4.0.4
Apple Safari 2.0.3
Apple Safari 4.1.1
Apple Safari 5.0.2
Apple Safari 1.0b1
Apple Safari 1.0.2
Apple Safari 3.0.0b
Apple Safari 3.0.0
Apple Safari 3.0.4
Apple Safari 3.0.1b
Apple Safari 3.0.4b
Apple Safari 5.1.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »