CVE-2016-4592
published 2016-07-22CVE-2016-4592: WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to cause a denial of service (memory consumption) via a…
PriorityP427medium6.5CVSS 3.0
AVNACLPRNUIRSUCNINAH
EPSS
1.67%
82.5th percentile
WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to cause a denial of service (memory consumption) via a crafted web site.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | ios | — | — |
| apple | safari | — | — |
| apple | tvos | — | — |
| webkitgtk | webkitgtk | < 2.10.5 | 2.10.5 |
CVSS provenance
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
nvdv2.07.1HIGHAV:N/AC:M/Au:N/C:N/I:N/A:C
osv6.5MEDIUM
GHSA
GHSA-94vh-jmgr-25ww: WebKit in Apple iOS before 9
ghsa_unreviewed·2022-05-14
CVE-2016-4592 [HIGH] CWE-400 GHSA-94vh-jmgr-25ww: WebKit in Apple iOS before 9
WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to cause a denial of service (memory consumption) via a crafted web site.
OSV
CVE-2016-4592: WebKit in Apple iOS before 9
osv·2016-07-22·CVSS 6.5
CVE-2016-4592 [MEDIUM] CVE-2016-4592: WebKit in Apple iOS before 9
WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to cause a denial of service (memory consumption) via a crafted web site.
Apple
CVE-2016-4592: iOS 9.3.3
vendor_apple·2016-07-18·CVSS 6.5
CVE-2016-4592 [MEDIUM] CVE-2016-4592: iOS 9.3.3
Apple Security Update: About the security content of iOS 9.3.3
Product: iOS
Version: 9.3.3
CVE: CVE-2016-4592
Component: WebKit
Impact: Visiting a maliciously crafted webpage may lead to a system denial of service
Description: A memory consumption issue was addressed through improved memory handling.
Apple
CVE-2016-4592: tvOS 9.2.2
vendor_apple·2016-07-18·CVSS 6.5
CVE-2016-4592 [MEDIUM] CVE-2016-4592: tvOS 9.2.2
Apple Security Update: About the security content of tvOS 9.2.2
Product: tvOS
Version: 9.2.2
CVE: CVE-2016-4592
Component: WebKit
Impact: Processing maliciously crafted web content may lead to a system denial of service
Description: A memory consumption issue was addressed through improved memory handling.
Apple
CVE-2016-4592: Safari 9.1.2
vendor_apple·2016-07-18·CVSS 6.5
CVE-2016-4592 [MEDIUM] CVE-2016-4592: Safari 9.1.2
Apple Security Update: About the security content of Safari 9.1.2
Product: Safari
Version: 9.1.2
CVE: CVE-2016-4592
Component: WebKit
Impact: Visiting a maliciously crafted webpage may lead to a system denial of service
Description: A memory consumption issue was addressed through improved memory handling.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://lists.apple.com/archives/security-announce/2016/Jul/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2016/Jul/msg00003.htmlhttp://lists.apple.com/archives/security-announce/2016/Jul/msg00004.htmlhttp://packetstormsecurity.com/files/138502/WebKitGTK-SOP-Bypass-Information-Disclosure.htmlhttp://www.securityfocus.com/archive/1/539295/100/0/threadedhttp://www.securityfocus.com/bid/91830http://www.securitytracker.com/id/1036343https://support.apple.com/HT206900https://support.apple.com/HT206902https://support.apple.com/HT206905http://lists.apple.com/archives/security-announce/2016/Jul/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2016/Jul/msg00003.htmlhttp://lists.apple.com/archives/security-announce/2016/Jul/msg00004.htmlhttp://packetstormsecurity.com/files/138502/WebKitGTK-SOP-Bypass-Information-Disclosure.htmlhttp://www.securityfocus.com/archive/1/539295/100/0/threadedhttp://www.securityfocus.com/bid/91830http://www.securitytracker.com/id/1036343https://support.apple.com/HT206900https://support.apple.com/HT206902https://support.apple.com/HT206905
2016-07-22
Published