CVE-2016-1849
published 2016-05-20CVE-2016-1849: The "Clear History and Website Data" feature in Apple Safari before 9.1.1, as used in iOS before 9.3.2 and other products, mishandles the deletion of browsing…
PriorityP48low3.3CVSS 3.0
AVLACLPRLUINSUCLINAN
EPSS
0.06%
17.8th percentile
The "Clear History and Website Data" feature in Apple Safari before 9.1.1, as used in iOS before 9.3.2 and other products, mishandles the deletion of browsing history, which might allow local users to obtain sensitive information by leveraging read access to a Safari directory.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | iphone_os | <= 9.3.1 | — |
| apple | safari | <= 9.1 | — |
| apple | safari | — | — |
CVSS provenance
nvdv3.03.3LOWCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
nvdv2.02.1LOWAV:L/AC:L/Au:N/C:P/I:N/A:N
Apple
CVE-2016-1849: Safari 9.1.1
vendor_apple·CVSS 3.3
CVE-2016-1849 [LOW] CVE-2016-1849: Safari 9.1.1
Apple Security Update: About the security content of Safari 9.1.1
Product: Safari
Version: 9.1.1
CVE: CVE-2016-1849
Component: CVE-ID
Apple
CVE-2016-1849: iOS 9.3.2
vendor_apple·CVSS 3.3
CVE-2016-1849 [LOW] CVE-2016-1849: iOS 9.3.2
Apple Security Update: About the security content of iOS 9.3.2
Product: iOS
Version: 9.3.2
CVE: CVE-2016-1849
Component: CVE-ID
GHSA
GHSA-wmg4-hccw-9xwx: The "Clear History and Website Data" feature in Apple Safari before 9
ghsa_unreviewed·2022-05-17
CVE-2016-1849 [LOW] CWE-200 GHSA-wmg4-hccw-9xwx: The "Clear History and Website Data" feature in Apple Safari before 9
The "Clear History and Website Data" feature in Apple Safari before 9.1.1, as used in iOS before 9.3.2 and other products, mishandles the deletion of browsing history, which might allow local users to obtain sensitive information by leveraging read access to a Safari directory.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://lists.apple.com/archives/security-announce/2016/May/msg00002.htmlhttp://lists.apple.com/archives/security-announce/2016/May/msg00005.htmlhttp://www.securitytracker.com/id/1035888https://support.apple.com/HT206565https://support.apple.com/HT206568http://lists.apple.com/archives/security-announce/2016/May/msg00002.htmlhttp://lists.apple.com/archives/security-announce/2016/May/msg00005.htmlhttp://www.securitytracker.com/id/1035888https://support.apple.com/HT206565https://support.apple.com/HT206568
2016-05-20
Published