Safari

safari

Vendor: Apple • 1,598 CVEs

CVEs (1,598)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2011-3230 1Apple 1Safari Apr 29, 2026 Oct 14, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Apple Safari before 5.1.1 on Mac OS X does not enforce an intended policy for file: URLs, which allows remote attackers to execute arbitrary code via a crafted web site.
CVE-2011-3229 1Apple 1Safari Apr 29, 2026 Oct 14, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Directory traversal vulnerability in Apple Safari before 5.1.1 allows remote attackers to execute arbitrary JavaScript code, in a Safari Extensions context, via a crafted safari-extension: URL.
CVE-2011-2877 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Oct 4, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Google Chrome before 14.0.835.202 does not properly handle SVG text, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to "stale font."
CVE-2011-3234 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Sep 19, 2011 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Google Chrome before 14.0.835.163 does not properly handle boxes, which allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors.
CVE-2011-2860 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Sep 19, 2011 N/A· v4 N/A· v3 7.5 HIGH· v2 Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to table styles.
CVE-2011-2857 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Sep 19, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to the focus controller.
CVE-2011-2855 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Sep 19, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Google Chrome before 14.0.835.163 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown ve...Show more Google Chrome before 14.0.835.163 does not properly handle Cascading Style Sheets (CSS) token sequences, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors that lead to a "stale node."Show less
CVE-2011-2854 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Sep 19, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to "ruby / table style handing."
CVE-2011-2847 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Sep 19, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in the document loader in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document.
CVE-2011-2846 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Sep 19, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to unload event handling.
CVE-2011-2827 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Aug 29, 2011 N/A· v4 N/A· v3 7.5 HIGH· v2 Use-after-free vulnerability in Google Chrome before 13.0.782.215 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to text searching.
CVE-2011-2825 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Aug 29, 2011 N/A· v4 N/A· v3 9.3 HIGH· v2 Use-after-free vulnerability in Google Chrome before 13.0.782.215 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving custom fonts.
CVE-2011-2823 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Aug 29, 2011 N/A· v4 N/A· v3 7.5 HIGH· v2 Use-after-free vulnerability in Google Chrome before 13.0.782.215 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors involving a line box.
CVE-2008-7296 1Apple 1Safari Apr 29, 2026 Aug 9, 2011 N/A· v4 N/A· v3 5.8 MEDIUM· v2 Apple Safari cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-Cookie header in an HTTP response,...Show more Apple Safari cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle attackers to overwrite or delete arbitrary cookies via a Set-Cookie header in an HTTP response, related to lack of the HTTP Strict Transport Security (HSTS) includeSubDomains feature, aka a "cookie forcing" issue.Show less
CVE-2011-2819 2Apple Google 3Chrome Iphone OsSafari Apr 29, 2026 Aug 3, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Google Chrome before 13.0.782.107 allows remote attackers to bypass the Same Origin Policy via vectors related to handling of the base URI.
CVE-2011-2818 3Apple DebianGoogle 5Chrome Debian LinuxIphone Os+2 more Apr 29, 2026 Aug 3, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to display box rendering.
CVE-2011-2805 2Apple Google 3Chrome Iphone OsSafari Apr 29, 2026 Aug 3, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Google Chrome before 13.0.782.107 allows remote attackers to bypass the Same Origin Policy and conduct script injection attacks via unspecified vectors.
CVE-2011-2800 3Apple DebianGoogle 4Chrome Debian LinuxIphone Os+1 more Apr 29, 2026 Aug 3, 2011 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Google Chrome before 13.0.782.107 allows remote attackers to obtain potentially sensitive information about client-side redirect targets via a crafted web site.
CVE-2011-2799 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Aug 3, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to HTML range handling.
CVE-2011-2797 2Apple Google 4Chrome Iphone OsItunes+1 more Apr 29, 2026 Aug 3, 2011 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Use-after-free vulnerability in Google Chrome before 13.0.782.107 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors related to resource caching.

Previous 1...606162...80 Next