Unrated severityNVD Advisory· Published Jul 14, 2008· Updated Apr 23, 2026

CVE-2008-1590

Description

JavaScriptCore in WebKit on Apple iPhone before 2.0 and iPod touch before 2.0 does not properly perform runtime garbage collection, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors that trigger memory corruption, a different vulnerability than CVE-2008-2317.

Affected products

Webkit/Javascriptcore
cpe:2.3:a:webkit:javascriptcore:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.apple.com/archives/security-announce/2008//Jul/msg00001.htmlnvd
secunia.com/advisories/31074nvd
www.securityfocus.com/bid/30186nvd
www.vupen.com/english/advisories/2008/2094/referencesnvd
exchange.xforce.ibmcloud.com/vulnerabilities/43738nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000