NVD

Id
20319  
Name
CVE-2016-4758  
Description
WebKit in Apple iOS before 10, iTunes before 12.5.1 on Windows, and Safari before 10 does not properly restrict access to the location variable, which allows remote attackers to obtain sensitive information via a crafted web site.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2016-09-25  
Modified Date
2016-11-28  
Seq
2016-4758  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
111065 20319 CVE-2016-4758 APPLE-SA-2016-09-20-2  View
111066 20319 CVE-2016-4758 APPLE-SA-2016-09-20-3  View
111067 20319 CVE-2016-4758 APPLE-SA-2016-09-20-7  View
111068 20319 CVE-2016-4758 http://mksben.l0.cm/2016/09/safari-uxss-showModalDialog.html  View
111069 20319 CVE-2016-4758 93066  View
111070 20319 CVE-2016-4758 https://support.apple.com/HT207143  View
111071 20319 CVE-2016-4758 https://support.apple.com/HT207157  View
111072 20319 CVE-2016-4758 https://support.apple.com/HT207158  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
4170 JVNDB-2016-004943 複数の Apple 製品などで使用される WebKit における重要な情報を取得される脆弱性 Apple iOS、Windows 上で稼動する iTunes、および Safari などで使用される WebKit は、位置変数へのアクセスを適切に制限しないため、重要な情報を取得される脆弱性が存在します。 CVE-2016-4758 91264 CVE-2016-4758 20319 4.3 6.5 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-004943.html 2016-09-13 2016-09-29 View