CVE-2015-3751 in Safari
الملخص
بحسب MITRE
WebKit in Apple Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, as used in iOS before 8.4.1 and other products, allows remote attackers to bypass a Content Security Policy protection mechanism by using a video control in conjunction with an IMG element within an OBJECT element.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.