NVD

Id
32452  
Name
CVE-2014-4465  
Description
WebKit in Apple Safari before 6.2.1, 7.x before 7.1.1, and 8.x before 8.0.1 allows remote attackers to bypass the Same Origin Policy via crafted Cascading Style Sheets (CSS) token sequences within an SVG file in the SRC attribute of an IMG element.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-19  
Published
2014-12-10  
Modified Date
2015-02-09  
Seq
2014-4465  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
171172 32452 CVE-2014-4465 APPLE-SA-2014-12-2-1  View
171173 32452 CVE-2014-4465 APPLE-SA-2015-01-27-1  View
171174 32452 CVE-2014-4465 APPLE-SA-2015-01-27-2  View
171175 32452 CVE-2014-4465 http://support.apple.com/HT204245  View
171176 32452 CVE-2014-4465 http://support.apple.com/HT204246  View
171177 32452 CVE-2014-4465 http://support.apple.com/kb/HT6596  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
17013 JVNDB-2014-005888 Apple Safari などで使用される WebKit における同一生成元ポリシーを回避される脆弱性 Apple Safari などで使用される WebKit には、同一生成元ポリシーを回避される脆弱性が存在します。 CVE-2014-4465 71753 CVE-2014-4465 32452 5 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-005888.html 2014-12-03 2015-02-02 View