The host is installed with Apple Mac OS X 10.14.6 or 10.13.6 and Safari before 13.0.1 and is prone to a universal cross site scripting vulnerability. A flaw is present in the application, which fails to properly handle a validation issue. Successful exploitation allows an attacker to cause universal cross site scripting.
The host is installed with Safari before 13.0.3 on Apple Mac OS X 10.13.6, 10.14.6 or 10.15.1 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle third party HTTP referrers. Successful exploitation may allow attackers to reveal the sites a user has visited.
The host is installed with Apple Safari before 15.0 on MacOS or Apple Mac OS 12 before 12.0.1 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to handle a state management issue. On successful exploitation, a malicious application may bypass Gatekeeper checks.
The host is installed with Apple Safari before 6.0.1 and is prone to an arbitrary file read vulnerability. A flaw is present in the application, which fails to handle quarantine attribute in HTML documents. Successful exploitation could allow user-assisted remote attackers to read arbitrary files by leveraging the presence of a downloaded document.
The host is installed with Apple Safari before 6.0.1 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow remote attackers to obtain the Me card from an Address Book.
The host is installed with Apple Safari before 6.0.1 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle https urls. Successful exploitation could allow user-assisted remote attackers to obtain sensitive information by sniffing the network.
The host is installed with Apple Safari before 6.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted url. Successful exploitation could allow attackers to execute arbitrary code or crash the service.
The host is installed with Apple Safari before 6.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted url. Successful exploitation could allow attackers to execute arbitrary code or crash the service.
The host is installed with Apple Safari before 6.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted url. Successful exploitation could allow attackers to execute arbitrary code or crash the service.
The host is installed with Apple Safari before 6.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted url. Successful exploitation could allow attackers to execute arbitrary code or crash the service.