CVE-2012-3695 in iOSinfo

Summary

Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 6.0 allows remote attackers to inject arbitrary web script or HTML by leveraging improper URL canonicalization during the handling of the location.href property.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

06/19/2012

Disclosure

07/25/2012

Moderation

VulDB entry created

Entries

2: VDB-6509

CPE

ready

CWE

CWE-79 (Confirmed)

CVSS

6.3

EPSS

0.00396

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-3695
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-3695
CVE Details	https://www.cvedetails.com/cve/CVE-2012-3695/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!