CVE-2012-3693 — Apple Safari vulnerability
2 documents2 sources
Severity
5.0MEDIUMNVD
EPSS
0.4%
top 39.96%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJul 25
Latest updateMay 17
Description
Incomplete blacklist vulnerability in WebKit in Apple Safari before 6.0 allows remote attackers to spoof domain names in URLs, and possibly conduct phishing attacks, by leveraging the availability of IDN support and Unicode fonts to construct unspecified homoglyphs.
CVSS vector
AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9
Affected Packages1 packages
🔴Vulnerability Details
1GHSA▶
GHSA-qfr8-v54c-fch4: Incomplete blacklist vulnerability in WebKit in Apple Safari before 6↗2022-05-17