Lucene search
AppleCVE-2014-1390HistoryAug 14, 2014 - 11:15 a.m.
CVE-2014-1390
2014-08-1411:15:22
CWE-119
apple
web.nvd.nist.gov
38
cve-2014-1390
webkit
remote code execution
apple safari
memory corruption
denial of service
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.9
Confidence
High
EPSS
0.008
Percentile
81.6%
WebKit, as used in Apple Safari before 6.1.6 and 7.x before 7.0.6, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in HT6367.
Affected configurations
Node
applesafariMatch7.0
ORapplesafariMatch7.0.1
ORapplesafariMatch7.0.2
ORapplesafariMatch7.0.3
ORapplesafariMatch7.0.4
ORapplesafariMatch7.0.5
Node
applesafariRange≤6.1.5
ORapplesafariMatch6.0
ORapplesafariMatch6.0.1
ORapplesafariMatch6.0.2
ORapplesafariMatch6.0.3
ORapplesafariMatch6.0.4
ORapplesafariMatch6.0.5
ORapplesafariMatch6.1
ORapplesafariMatch6.1.1
ORapplesafariMatch6.1.2
ORapplesafariMatch6.1.3
ORapplesafariMatch6.1.4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| apple | safari | 7.0 | cpe:2.3:a:apple:safari:7.0:*:*:*:*:*:*:* |
| apple | safari | 7.0.1 | cpe:2.3:a:apple:safari:7.0.1:*:*:*:*:*:*:* |
| apple | safari | 7.0.2 | cpe:2.3:a:apple:safari:7.0.2:*:*:*:*:*:*:* |
| apple | safari | 7.0.3 | cpe:2.3:a:apple:safari:7.0.3:*:*:*:*:*:*:* |
| apple | safari | 7.0.4 | cpe:2.3:a:apple:safari:7.0.4:*:*:*:*:*:*:* |
| apple | safari | 7.0.5 | cpe:2.3:a:apple:safari:7.0.5:*:*:*:*:*:*:* |
| apple | safari | * | cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:* |
| apple | safari | 6.0 | cpe:2.3:a:apple:safari:6.0:*:*:*:*:*:*:* |
| apple | safari | 6.0.1 | cpe:2.3:a:apple:safari:6.0.1:*:*:*:*:*:*:* |
| apple | safari | 6.0.2 | cpe:2.3:a:apple:safari:6.0.2:*:*:*:*:*:*:* |
Related
prion
prion
Memory corruption
2014-08-14 11:15:00
cvelist
cvelist
CVE-2014-1390
2014-08-14 10:00:00
debiancve
debiancve
CVE-2014-1390
2014-08-14 11:15:00
nvd
nvd
CVE-2014-1390
2014-08-14 11:15:22
ubuntucve
ubuntucve
CVE-2014-1390
2014-08-14 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: webkitgtk-2.4.8-1.fc21
2015-01-11 02:57:01
[SECURITY] Fedora 21 Update: webkitgtk3-2.4.8-1.fc21
2015-01-11 02:57:02
securityvulns
securityvulns
APPLE-SA-2014-08-13-1 Safari 6.1.6 and Safari 7.0.6
2014-08-26 00:00:00
Apple Safari / Webkit multiple security vulnerabilities
2015-02-02 00:00:00
WebKitGTK+ Security Advisory WSA-2015-0001
2015-02-02 00:00:00
openvas
openvas
Fedora Update for webkitgtk3 FEDORA-2015-0500
2015-01-11 00:00:00
Gentoo Security Advisory GLSA 201601-02
2016-01-27 00:00:00
nessus
nessus
Mac OS X : Apple Safari < 6.1.6 / 7.0.6 Multiple Vulnerabilities
2014-08-14 00:00:00
Fedora 21 : webkitgtk-2.4.8-1.fc21 / webkitgtk3-2.4.8-1.fc21 (2015-0500)
2015-01-12 00:00:00
gentoo
gentoo
WebKitGTK+: Multiple vulnerabilities
2016-01-26 00:00:00
freebsd
freebsd
WebKit-gtk -- Multiple vulnerabilities
2015-01-07 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.9
Confidence
High
EPSS
0.008
Percentile
81.6%
Related for CVE-2014-1390