Medium severity4.3NVD Advisory· Published Mar 24, 2016· Updated Jun 17, 2026
CVE-2016-1764
CVE-2016-1764
Description
The Content Security Policy (CSP) implementation in Messages in Apple OS X before 10.11.4 allows remote attackers to obtain sensitive information via a javascript: URL.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <10.11.4
Patches
Vulnerability mechanics
References
3- lists.apple.com/archives/security-announce/2016/Mar/msg00004.htmlnvdVendor Advisory
- support.apple.com/HT206167nvdVendor Advisory
- www.securitytracker.com/id/1035363nvd
News mentions
0No linked articles in our index yet.