VYPR

WebKit in tvOS

by Apple Inc.

CVEs (2)

  • CVE-2016-1858MedMay 20, 2016
    risk 0.42cvss 6.5epss 0.02

    WebKit, as used in Apple iOS before 9.3.2, Safari before 9.1.1, and tvOS before 9.2.1, improperly tracks taint attributes, which allows remote attackers to obtain sensitive information via a crafted web site.

  • CVE-2013-1040Sep 19, 2013
    risk 0.00cvss epss 0.02

    WebKit, as used in Apple iOS before 7, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-09-18-2.