Unrated severityNVD Advisory· Published Dec 18, 2013· Updated Apr 29, 2026

CVE-2013-5228

Description

WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-12-16-1.

Affected products

Apple Inc./iTunes
cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:*
Range: <=12.0
Apple Inc./Safari8 versions
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*range: <=6.1
- cpe:2.3:a:apple:safari:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:6.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:6.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:6.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:6.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:apple:safari:7.0:*:*:*:*:*:*:*
Apple Inc./Webkit
cpe:2.3:a:apple:webkit:*:*:*:*:*:*:*:*
Apple Inc./Iphone Os
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Range: <=7.0.6
Apple Inc./tvOS
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
Range: <=6.0.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.apple.com/kb/HT6162nvdVendor Advisory
support.apple.com/kb/HT6163nvdVendor Advisory
support.apple.com/kb/HT6537nvdVendor Advisory
archives.neohapsis.com/archives/bugtraq/2013-12/0086.htmlnvdBroken Link
archives.neohapsis.com/archives/bugtraq/2013-12/0087.htmlnvdBroken Link

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000