Описание
WebKit, as used in Apple iOS before 8.3 and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, does not properly handle the userinfo field in FTP URLs, which allows remote attackers to trigger incorrect resource access via unspecified vectors.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | ignored | no update available |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was ignored [no update available]] |
| esm-infra/xenial | ignored | no update available |
| lucid | DNE | |
| precise | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | DNE | trusty was ignored [no update available] |
| upstream | needs-triage | |
| utopic | ignored | end of life |
| vivid | ignored | end of life |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | ignored | no update available |
| esm-apps/xenial | ignored | no update available |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was ignored [no update available]] |
| lucid | DNE | |
| precise | ignored | end of life |
| trusty | ignored | end of standard support |
| trusty/esm | DNE | trusty was ignored [no update available] |
| upstream | needs-triage | |
| utopic | ignored | end of life |
| vivid | ignored | end of life |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| lucid | ignored | end of life |
| precise | ignored | end of life |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needs-triage | |
| utopic | DNE | |
| vivid | DNE | |
| vivid/stable-phone-overlay | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | ignored | no update available |
| esm-apps/xenial | ignored | no update available |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was ignored [no update available]] |
| lucid | DNE | |
| precise | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | DNE | trusty was ignored [no update available] |
| upstream | needs-triage | |
| utopic | ignored | end of life |
| vivid | ignored | end of life |
Показывать по
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
WebKit, as used in Apple iOS before 8.3 and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, does not properly handle the userinfo field in FTP URLs, which allows remote attackers to trigger incorrect resource access via unspecified vectors.
WebKit, as used in Apple iOS before 8.3 and Apple Safari before 6.2.5, 7.x before 7.1.5, and 8.x before 8.0.5, does not properly handle the userinfo field in FTP URLs, which allows remote attackers to trigger incorrect resource access via unspecified vectors.
EPSS
4.3 Medium
CVSS2