CVE-2015-5905Apple Iphone OS vulnerability

CWE-2543 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.4%
top 40.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple Iphone OSApple IOS 9
Timeline
PublishedSep 18
Latest updateMay 17

Description

Safari in Apple iOS before 9 allows remote attackers to spoof the relationship between URLs and web content via a crafted window opener on a web site.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDapple/iphone_os8.4.1
Appleapple/ios_9

🔴Vulnerability Details

1
GHSA
GHSA-cxvq-w4w4-3v2g: Safari in Apple iOS before 9 allows remote attackers to spoof the relationship between URLs and web content via a crafted window opener on a web site2022-05-17

📋Vendor Advisories

1
Apple
CVE-2015-5905: iOS 9