NVD

Id
32361  
Name
CVE-2014-4363  
Description
Safari in Apple iOS before 8 does not properly restrict the autofilling of passwords in forms, which allows remote attackers to obtain sensitive information via (1) an http web site, (2) an https web site with an unacceptable X.509 certificate, or (3) an IFRAME element.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2014-09-18  
Modified Date
2017-01-06  
Seq
2014-4363  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
170487 32361 CVE-2014-4363 APPLE-SA-2014-09-17-1  View
170488 32361 CVE-2014-4363 61306  View
170489 32361 CVE-2014-4363 http://support.apple.com/kb/HT6440  View
170490 32361 CVE-2014-4363 http://support.apple.com/kb/HT6441  View
170491 32361 CVE-2014-4363 69882  View
170492 32361 CVE-2014-4363 69909  View
170493 32361 CVE-2014-4363 1030866  View
170494 32361 CVE-2014-4363 appleios-cve20144363-info-disc(96075)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
15420 JVNDB-2014-004295 Apple iOS の Safari における重要な情報を取得される脆弱性 Apple iOS の Safari は、フォームのパスワードのオートフィルを適切に制限しないため、重要な情報を取得される脆弱性が存在します。 CVE-2014-4363 71651 CVE-2014-4363 32361 5 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-004295.html 2014-09-17 2014-09-19 View