Apple Safari vulnerabilities
1,592 known vulnerabilities affecting apple/safari.
Total CVEs
1,592
CISA KEV
31
actively exploited
Public exploits
157
Exploited in wild
25
Severity breakdown
CRITICAL211HIGH603MEDIUM757LOW20UNKNOWN1
Vulnerabilities
Page 32 of 80
CVE-2017-7157HIGHCVSS 8.8fixed in 11.0.22017-12-27
CVE-2017-7157 [HIGH] CWE-119 CVE-2017-7157: An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2
An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service
nvdapple
CVE-2017-7156HIGHCVSS 8.8fixed in 11.0.22017-12-27
CVE-2017-7156 [HIGH] CWE-119 CVE-2017-7156: An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2
An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service
nvdapple
CVE-2017-13856HIGHCVSS 8.8fixed in 11.0.22017-12-25
CVE-2017-13856 [HIGH] CWE-119 CVE-2017-13856: An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2
An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple
CVE-2017-13870HIGHCVSS 8.8fixed in 11.0.22017-12-25
CVE-2017-13870 [HIGH] CWE-119 CVE-2017-13870: An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2
An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple
CVE-2017-13866HIGHCVSS 8.8fixed in 11.0.22017-12-25
CVE-2017-13866 [HIGH] CWE-119 CVE-2017-13866: An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2
An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple
CVE-2017-17821CRITICALCVSS 9.8v462017-12-21
CVE-2017-17821 [CRITICAL] CWE-119 CVE-2017-17821: WTF/wtf/FastBitVector.h in WebKit, as distributed in Safari Technology Preview Release 46, allows re
WTF/wtf/FastBitVector.h in WebKit, as distributed in Safari Technology Preview Release 46, allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact because it calls the FastBitVectorWordOwner::resizeSlow function (in WTF/wtf/FastBitVector.cpp) for a purpose other than initializing a bitvector
nvd
CVE-2017-13788HIGHCVSS 8.8fixed in 11.0.12017-11-13
CVE-2017-13788 [HIGH] CWE-119 CVE-2017-13788: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple
CVE-2017-13795HIGHCVSS 8.8PoCfixed in 11.0.12017-11-13
CVE-2017-13795 [HIGH] CWE-119 CVE-2017-13795: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple
CVE-2017-13785HIGHCVSS 8.8PoCfixed in 11.0.12017-11-13
CVE-2017-13785 [HIGH] CWE-119 CVE-2017-13785: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple
CVE-2017-13792HIGHCVSS 8.8PoCfixed in 11.0.12017-11-13
CVE-2017-13792 [HIGH] CWE-119 CVE-2017-13792: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple
CVE-2017-13798HIGHCVSS 8.8PoCfixed in 11.0.12017-11-13
CVE-2017-13798 [HIGH] CWE-119 CVE-2017-13798: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple
CVE-2017-13802HIGHCVSS 8.8PoCfixed in 11.0.12017-11-13
CVE-2017-13802 [HIGH] CWE-119 CVE-2017-13802: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple
CVE-2017-13794HIGHCVSS 8.8ExploitedPoCfixed in 11.0.12017-11-13
CVE-2017-13794 [HIGH] CWE-119 CVE-2017-13794: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple
CVE-2017-13797HIGHCVSS 8.8PoCfixed in 11.0.12017-11-13
CVE-2017-13797 [HIGH] CWE-119 CVE-2017-13797: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple
CVE-2017-13803HIGHCVSS 8.8fixed in 11.0.12017-11-13
CVE-2017-13803 [HIGH] CWE-119 CVE-2017-13803: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple
CVE-2017-13796HIGHCVSS 8.8PoCfixed in 11.0.12017-11-13
CVE-2017-13796 [HIGH] CWE-119 CVE-2017-13796: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple
CVE-2017-13793HIGHCVSS 8.8fixed in 11.0.12017-11-13
CVE-2017-13793 [HIGH] CWE-119 CVE-2017-13793: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple
CVE-2017-13784HIGHCVSS 8.8PoCfixed in 11.0.12017-11-13
CVE-2017-13784 [HIGH] CWE-119 CVE-2017-13784: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple
CVE-2017-13783HIGHCVSS 8.8PoCfixed in 11.0.12017-11-13
CVE-2017-13783 [HIGH] CWE-119 CVE-2017-13783: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple
CVE-2017-13791HIGHCVSS 8.8PoCfixed in 11.0.12017-11-13
CVE-2017-13791 [HIGH] CWE-119 CVE-2017-13791: An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of servi
nvdapple