CVE-2012-3748
published 2012-11-03CVE-2012-3748: Race condition in WebKit in Apple iOS before 6.0.1 and Safari before 6.0.2 allows remote attackers to execute arbitrary code or cause a denial of service…
PriorityP338medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EXPLOIT
EPSS
14.41%
96.2th percentile
Race condition in WebKit in Apple iOS before 6.0.1 and Safari before 6.0.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving JavaScript arrays.
Affected
108 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | iphone_os | <= 6.0 | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
| apple | iphone_os | — | — |
CVSS provenance
nvdv2.05.1MEDIUMAV:N/AC:H/Au:N/C:P/I:P/A:P
osv5.1MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-jw8x-chj5-jxmc: Race condition in WebKit in Apple iOS before 6
ghsa_unreviewed·2022-05-17
CVE-2012-3748 [MEDIUM] CWE-362 GHSA-jw8x-chj5-jxmc: Race condition in WebKit in Apple iOS before 6
Race condition in WebKit in Apple iOS before 6.0.1 and Safari before 6.0.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving JavaScript arrays.
OSV
CVE-2012-3748: Race condition in WebKit in Apple iOS before 6
osv·2012-11-03·CVSS 5.1
CVE-2012-3748 [MEDIUM] CVE-2012-3748: Race condition in WebKit in Apple iOS before 6
Race condition in WebKit in Apple iOS before 6.0.1 and Safari before 6.0.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving JavaScript arrays.
No detection rules found.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2012-11/0012.htmlhttp://archives.neohapsis.com/archives/bugtraq/2012-11/0013.htmlhttp://lists.apple.com/archives/security-announce/2012/Nov/msg00000.htmlhttp://lists.apple.com/archives/security-announce/2012/Nov/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2013/Sep/msg00003.htmlhttp://secunia.com/advisories/51445http://support.apple.com/kb/HT5567http://support.apple.com/kb/HT5568http://support.apple.com/kb/HT5598http://support.apple.com/kb/HT5921http://www.securityfocus.com/bid/56362http://archives.neohapsis.com/archives/bugtraq/2012-11/0012.htmlhttp://archives.neohapsis.com/archives/bugtraq/2012-11/0013.htmlhttp://lists.apple.com/archives/security-announce/2012/Nov/msg00000.htmlhttp://lists.apple.com/archives/security-announce/2012/Nov/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2013/Sep/msg00003.htmlhttp://secunia.com/advisories/51445http://support.apple.com/kb/HT5567http://support.apple.com/kb/HT5568http://support.apple.com/kb/HT5598http://support.apple.com/kb/HT5921http://www.securityfocus.com/bid/56362
2012-11-03
Published