CVE-2015-1112
published 2015-04-10CVE-2015-1112: Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, as used on iOS before 8.3 and other platforms, does not properly delete browsing-history…
PriorityP421medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
0.34%
56.8th percentile
Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, as used on iOS before 8.3 and other platforms, does not properly delete browsing-history data from the history.plist file, which allows attackers to obtain sensitive information by reading this file.
Affected
21 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | iphone_os | <= 8.2 | — |
| apple | safari | <= 6.2.4 | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari | — | — |
| apple | safari_8.0.5_safari_7.1.5_and_safari | — | — |
Apple
CVE-2015-1112: iOS 8.3
vendor_apple·CVSS 5.0
CVE-2015-1112 [MEDIUM] CVE-2015-1112: iOS 8.3
Apple Security Update: About the security content of iOS 8.3
Product: iOS
Version: 8.3
CVE: CVE-2015-1112
Component: CVE-ID
Apple
CVE-2015-1112: Safari 8.0.5, Safari 7.1.5, and Safari 6.2.5
vendor_apple·CVSS 5.0
CVE-2015-1112 [MEDIUM] CVE-2015-1112: Safari 8.0.5, Safari 7.1.5, and Safari 6.2.5
Apple Security Update: About the security content of Safari 8.0.5, Safari 7.1.5, and Safari 6.2.5
Product: Safari 8.0.5, Safari 7.1.5, and Safari
Version: 6.2.5
CVE: CVE-2015-1112
Component: CVE-ID
GHSA
GHSA-jvf5-x86m-gp68: Apple Safari before 6
ghsa_unreviewed·2022-05-17
CVE-2015-1112 [MEDIUM] CWE-200 GHSA-jvf5-x86m-gp68: Apple Safari before 6
Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, as used on iOS before 8.3 and other platforms, does not properly delete browsing-history data from the history.plist file, which allows attackers to obtain sensitive information by reading this file.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://lists.apple.com/archives/security-announce/2015/Apr/msg00000.htmlhttp://lists.apple.com/archives/security-announce/2015/Apr/msg00002.htmlhttp://www.securitytracker.com/id/1032047https://support.apple.com/HT204658https://support.apple.com/HT204661http://lists.apple.com/archives/security-announce/2015/Apr/msg00000.htmlhttp://lists.apple.com/archives/security-announce/2015/Apr/msg00002.htmlhttp://www.securitytracker.com/id/1032047https://support.apple.com/HT204658https://support.apple.com/HT204661
2015-04-10
Published