# |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
1 |
CVE-2020-9912 |
|
|
|
2020-10-16 |
2020-10-20 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
A logic issue was addressed with improved restrictions. This issue is fixed in Safari 13.1.2. A malicious attacker may be able to change the origin of a frame for a download in Safari Reader mode. |
2 |
CVE-2020-3894 |
362 |
|
|
2020-04-01 |
2022-06-02 |
2.6 |
None |
Remote |
High |
Not required |
Partial |
None |
None |
A race condition was addressed with additional validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, tvOS 13.4, Safari 13.1, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. An application may be able to read restricted memory. |
3 |
CVE-2017-7006 |
203 |
|
Bypass +Info |
2017-07-20 |
2019-10-03 |
2.6 |
None |
Remote |
High |
Not required |
Partial |
None |
None |
An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to conduct a timing side-channel attack to bypass the Same Origin Policy and obtain sensitive information via a crafted web site that uses SVG filters. |
4 |
CVE-2017-2385 |
200 |
|
+Info |
2017-04-02 |
2017-07-12 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
An issue was discovered in certain Apple products. Safari before 10.1 is affected. The issue involves the "Safari Login AutoFill" component. It allows local users to obtain access to locked keychain items via unspecified vectors. |
5 |
CVE-2016-7650 |
79 |
|
XSS |
2017-02-20 |
2017-07-27 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. The issue involves the "Safari Reader" component, which allows remote attackers to conduct UXSS attacks via a crafted web site. |
6 |
CVE-2016-1849 |
200 |
|
+Info |
2016-05-20 |
2016-12-01 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
The "Clear History and Website Data" feature in Apple Safari before 9.1.1, as used in iOS before 9.3.2 and other products, mishandles the deletion of browsing history, which might allow local users to obtain sensitive information by leveraging read access to a Safari directory. |
7 |
CVE-2015-5748 |
17 |
|
DoS |
2015-08-17 |
2017-09-21 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
The kernel in Apple OS X before 10.10.5 does not properly mount HFS volumes, which allows local users to cause a denial of service via a crafted volume. |
8 |
CVE-2015-1127 |
200 |
|
+Info |
2015-04-10 |
2016-12-03 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
The private-browsing implementation in WebKit in Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5 places browsing history into an index, which might allow local users to obtain sensitive information by reading index entries. |
9 |
CVE-2011-0169 |
79 |
|
XSS Bypass |
2011-03-11 |
2017-08-17 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
WebKit in Apple Safari before 5.0.4, when the Web Inspector is used, does not properly handle the window.console._inspectorCommandLineAPI property, which allows user-assisted remote attackers to bypass the Same Origin Policy and conduct cross-site scripting (XSS) attacks via a crafted web site. |
10 |
CVE-2010-0650 |
264 |
|
Bypass |
2010-02-18 |
2018-11-16 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
WebKit, as used in Google Chrome before 4.0.249.78 and Apple Safari, allows remote attackers to bypass intended restrictions on popup windows via crafted use of a mouse click event. |
11 |
CVE-2009-1716 |
264 |
|
+Info |
2009-06-10 |
2009-06-19 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
CFNetwork in Apple Safari before 4.0 on Windows does not properly protect the temporary files created for downloads, which allows local users to obtain sensitive information by reading these files. |
12 |
CVE-2009-1710 |
|
|
|
2009-06-10 |
2017-08-17 |
2.6 |
None |
Remote |
High |
Not required |
Partial |
None |
None |
WebKit in Apple Safari before 4.0 allows remote attackers to spoof the browser's display of (1) the host name, (2) security indicators, and unspecified other UI elements via a custom cursor in conjunction with a modified CSS3 hotspot property. |
13 |
CVE-2008-5914 |
|
|
|
2009-01-20 |
2009-01-23 |
2.1 |
None |
Remote |
High |
??? |
None |
Partial |
None |
An unspecified function in the JavaScript implementation in Apple Safari creates and exposes a "temporary footprint" when there is a current login to a web site, which makes it easier for remote attackers to trick a user into acting upon a spoofed pop-up message, aka an "in-session phishing attack." NOTE: as of 20090116, the only disclosure is a vague pre-advisory with no actionable information. However, because it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. |
14 |
CVE-2008-1005 |
200 |
|
+Info |
2008-03-19 |
2017-08-08 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
WebCore, as used in Apple Safari before 3.1, does not properly mask the password field when reverse conversion is used with the Kotoeri input method, which allows physically proximate attackers to read the password. |
15 |
CVE-2005-2517 |
|
|
|
2005-08-19 |
2008-09-05 |
2.6 |
None |
Remote |
High |
Not required |
Partial |
None |
None |
Safari in Mac OS X 10.3.9 and 10.4.2 submits forms from an XSL formatted page to the next page that is browsed by the user, which causes form data to be sent to the wrong site. |
16 |
CVE-2005-2272 |
|
|
|
2005-07-13 |
2017-07-11 |
2.6 |
None |
Remote |
High |
Not required |
None |
Partial |
None |
Safari version 2.0 (412) does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability." |
17 |
CVE-2005-1385 |
|
|
DoS |
2005-05-03 |
2016-10-18 |
2.6 |
None |
Remote |
High |
Not required |
None |
None |
Partial |
Safari 1.3 allows remote attackers to cause a denial of service (application crash) via a long https URL that triggers a NULL pointer dereference. |