exploitDog

GHSA-v4mv-7crp-f7p6

Опубликовано: 02 мая 2022

Источник: github

Github: Не прошло ревью

Описание

CFNetwork in Apple Safari before 4.0 misinterprets downloaded image files as local HTML documents in unspecified circumstances, which allows remote attackers to execute arbitrary JavaScript code by placing it in an image file.

CFNetwork in Apple Safari before 4.0 misinterprets downloaded image files as local HTML documents in unspecified circumstances, which allows remote attackers to execute arbitrary JavaScript code by placing it in an image file.

Ссылки

EPSS

Процентиль: 85%

0.02364

Низкий

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2009-1704

nvd

больше 16 лет назад

CFNetwork in Apple Safari before 4.0 misinterprets downloaded image files as local HTML documents in unspecified circumstances, which allows remote attackers to execute arbitrary JavaScript code by placing it in an image file.

EPSS

Процентиль: 85%

0.02364

Низкий

CVE ID

Дефекты

CWE-94