Medium severity6.5NVD Advisory· Published Sep 25, 2016· Updated Jun 17, 2026
CVE-2016-4758
CVE-2016-4758
Description
WebKit in Apple iOS before 10, iTunes before 12.5.1 on Windows, and Safari before 10 does not properly restrict access to the location variable, which allows remote attackers to obtain sensitive information via a crafted web site.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- Range: <10
- Range: <12.5.1
- Range: <10
Patches
Vulnerability mechanics
References
9- lists.apple.com/archives/security-announce/2016/Sep/msg00007.htmlnvdMailing ListVendor Advisory
- lists.apple.com/archives/security-announce/2016/Sep/msg00008.htmlnvdMailing ListVendor Advisory
- lists.apple.com/archives/security-announce/2016/Sep/msg00012.htmlnvdMailing ListVendor Advisory
- support.apple.com/HT207143nvdVendor Advisory
- support.apple.com/HT207157nvdVendor Advisory
- support.apple.com/HT207158nvdVendor Advisory
- mksben.l0.cm/2016/09/safari-uxss-showModalDialog.htmlnvd
- www.securityfocus.com/bid/93066nvd
- www.securitytracker.com/id/1036854nvd
News mentions
0No linked articles in our index yet.