VYPR
Unrated severityNVD Advisory· Published Sep 18, 2014· Updated Jun 17, 2026

CVE-2014-4363

CVE-2014-4363

Description

Safari in Apple iOS before 8 does not properly restrict the autofilling of passwords in forms, which allows remote attackers to obtain sensitive information via (1) an http web site, (2) an https web site with an unacceptable X.509 certificate, or (3) an IFRAME element.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Apple Inc./Safari2 versions
    cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*range: >=6.0,<=6.1.5
    • (no CPE)range: < 8
  • cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
    Range: >=7.0,<=7.1.2
  • Apple Inc./iOSllm-fuzzy
    Range: < 8

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.