CVE-2014-1268

CWE-119Buffer Overflow4 documents4 sources
Severity
6.8MEDIUM
EPSS
0.9%
top 25.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Apple SafariApple MAC OS XApple MAC OS X Server
Timeline
PublishedFeb 27
Latest updateMay 17

Description

WebKit, as used in Apple Safari before 6.1.2 and 7.x before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-1269 and CVE-2014-1270.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages3 packages

NVDapple/safari6.1.1+9
NVDapple/mac_os_x14 versions+13
NVDapple/mac_os_x_server6 versions+5

🔴Vulnerability Details

3
GHSA
GHSA-p882-77wh-rfm4: WebKit, as used in Apple Safari before 62022-05-17
CVEList
CVE-2014-1268: WebKit, as used in Apple Safari before 62014-02-27
OSV
CVE-2014-1268: WebKit, as used in Apple Safari before 62014-02-27
CVE-2014-1268 (MEDIUM CVSS 6.8) | cvebase.io