cbcvebase.
CVE-2012-3748
published 2012-11-03

CVE-2012-3748: Race condition in WebKit in Apple iOS before 6.0.1 and Safari before 6.0.2 allows remote attackers to execute arbitrary code or cause a denial of service…

PriorityP338medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EXPLOIT
EPSS
14.41%
96.2th percentile
Race condition in WebKit in Apple iOS before 6.0.1 and Safari before 6.0.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving JavaScript arrays.

Affected

108 ranges· showing 25
VendorProductVersion rangeFixed in
appleiphone_os<= 6.0
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os
appleiphone_os

CVSS provenance

nvdv2.05.1MEDIUMAV:N/AC:H/Au:N/C:P/I:P/A:P
osv5.1MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.