Safari

safari

Vendor: Apple • 1,598 CVEs

CVEs (1,598)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2011-3076 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Apr 5, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in Google Chrome before 18.0.1025.151 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to focus handling.
CVE-2011-3075 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Apr 5, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in Google Chrome before 18.0.1025.151 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to style-application commands.
CVE-2011-3074 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Apr 5, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in Google Chrome before 18.0.1025.151 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of media.
CVE-2011-3073 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Apr 5, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in Google Chrome before 18.0.1025.151 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the handling of SVG resources.
CVE-2011-3071 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Apr 5, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in the HTMLMediaElement implementation in Google Chrome before 18.0.1025.151 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors...Show more Use-after-free vulnerability in the HTMLMediaElement implementation in Google Chrome before 18.0.1025.151 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.Show less
CVE-2011-3069 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Apr 5, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 18.0.1025.151 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vec...Show more Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 18.0.1025.151 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to line boxes.Show less
CVE-2011-3068 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Apr 5, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 18.0.1025.151 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vec...Show more Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 18.0.1025.151 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to run-in boxes.Show less
CVE-2011-3067 2Apple Google 3Chrome Iphone OsSafari Apr 29, 2026 Apr 5, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Google Chrome before 18.0.1025.151 allows remote attackers to bypass the Same Origin Policy via vectors related to replacement of IFRAME elements.
CVE-2011-3064 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Mar 30, 2012 N/A· v4 N/A· v3 7.5 HIGH· v2 Use-after-free vulnerability in Google Chrome before 18.0.1025.142 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to SVG clipping.
CVE-2011-3060 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Mar 30, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Google Chrome before 18.0.1025.142 does not properly handle text fragments, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
CVE-2011-3059 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Mar 30, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Google Chrome before 18.0.1025.142 does not properly handle SVG text elements, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
CVE-2011-3056 3Apple GoogleOpensuse 4Chrome Iphone OsOpensuse+1 more Apr 29, 2026 Mar 22, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Google Chrome before 17.0.963.83 allows remote attackers to bypass the Same Origin Policy via vectors involving a "magic iframe."
CVE-2011-3053 3Apple GoogleOpensuse 5Chrome Iphone OsItunes+2 more Apr 29, 2026 Mar 22, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in Google Chrome before 17.0.963.83 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to block splitting.
CVE-2011-3050 3Apple GoogleOpensuse 5Chrome Iphone OsItunes+2 more Apr 29, 2026 Mar 22, 2012 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 17.0.963.83 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vecto...Show more Use-after-free vulnerability in the Cascading Style Sheets (CSS) implementation in Google Chrome before 17.0.963.83 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the :first-letter pseudo-element.Show less
CVE-2012-0647 1Apple 1Safari Apr 29, 2026 Mar 12, 2012 N/A· v4 N/A· v3 5.0 MEDIUM· v2 WebKit in Apple Safari before 5.1.4 does not properly handle redirects in conjunction with HTTP authentication, which might allow remote web servers to capture credentials by logging the Authorization HTTP header.
CVE-2012-0640 1Apple 1Safari Apr 29, 2026 Mar 12, 2012 N/A· v4 N/A· v3 5.0 MEDIUM· v2 WebKit in Apple Safari before 5.1.4 does not properly implement "From third parties and advertisers" cookie blocking, which makes it easier for remote web servers to track users via a cookie.
CVE-2012-0584 1Apple 1Safari Apr 29, 2026 Mar 12, 2012 N/A· v4 N/A· v3 6.4 MEDIUM· v2 The Internationalized Domain Name (IDN) feature in Apple Safari before 5.1.4 on Windows does not properly restrict the characters in URLs, which allows remote attackers to spoof a domain name via unspecified homoglyphs.
CVE-2011-3046 3Apple GoogleOpensuse 4Chrome Iphone OsOpensuse+1 more Apr 29, 2026 Mar 9, 2012 N/A· v4 N/A· v3 10.0 HIGH· v2 The extension subsystem in Google Chrome before 17.0.963.78 does not properly handle history navigation, which allows remote attackers to execute arbitrary code by leveraging a "Universal XSS (UXSS)" issue.
CVE-2012-0637 1Apple 3Itunes SafariWebkit Apr 29, 2026 Mar 8, 2012 N/A· v4 N/A· v3 7.6 HIGH· v2 WebKit, as used in Apple iTunes before 10.6, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsin...Show more WebKit, as used in Apple iTunes before 10.6, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2012-03-07-1.Show less
CVE-2012-0636 1Apple 3Itunes SafariWebkit Apr 29, 2026 Mar 8, 2012 N/A· v4 N/A· v3 7.6 HIGH· v2 WebKit, as used in Apple iTunes before 10.6, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsin...Show more WebKit, as used in Apple iTunes before 10.6, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other CVEs listed in APPLE-SA-2012-03-07-1.Show less

Previous 1...575859...80 Next