Download
| Alert*
|
oval:org.secpod.oval:def:110114
WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:27090 The host is installed with Apple iTunes before 12.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:27081 The host is installed with Apple iTunes before 12.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:27083 The host is installed with Apple iTunes before 12.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:27082 The host is installed with Apple iTunes before 12.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:27085 The host is installed with Apple iTunes before 12.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:27084 The host is installed with Apple iTunes before 12.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:27087 The host is installed with Apple iTunes before 12.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:27086 The host is installed with Apple iTunes before 12.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:27089 The host is installed with Apple iTunes before 12.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:27088 The host is installed with Apple iTunes before 12.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:1801183 CVE-2018-4246 Processing maliciously crafted web content may lead to arbitrary code execution. A type confusion issue was addressed with improved memory handling. Versions affected: WebKitGTK+ before 2.20.4 CVE-2018-4261 Processing maliciously crafted web content may lead to arbitrary code execution ... oval:org.secpod.oval:def:44802 The host is missing a security update according to Apple advisory, APPLE-SA-2018-3-29-8. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to disclose sensi ... oval:org.secpod.oval:def:704334 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:2000193 In iOS before 11.3, Safari before 11.1, iCloud for Windows before 7.4, tvOS before 11.3, watchOS before 4.3, iTunes before 12.7.4 for Windows, unexpected interaction causes an ASSERT failure. This issue was addressed with improved checks. oval:org.secpod.oval:def:110356 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. oval:org.secpod.oval:def:703036 webkitgtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:110313 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:110332 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. oval:org.secpod.oval:def:20876 The host is installed with Apple Safari before 6.1.6 or 7.x before 7.0.6 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or cause a denial of serv ... oval:org.secpod.oval:def:20874 The host is installed with Apple Safari before 6.1.6 or 7.x before 7.0.6 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or cause a denial of serv ... oval:org.secpod.oval:def:20875 The host is installed with Apple Safari before 6.1.6 or 7.x before 7.0.6 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or cause a denial of serv ... oval:org.secpod.oval:def:20872 The host is installed with Apple Safari before 6.1.6 or 7.x before 7.0.6 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or cause a denial of serv ... oval:org.secpod.oval:def:20873 The host is installed with Apple Safari before 6.1.6 or 7.x before 7.0.6 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or cause a denial of serv ... oval:org.secpod.oval:def:17358 The host is installed with Apple Safari before 6.1.3 or 7.x before 7.0.3 and is prone to a unspecified vulnerability. A flaw is present in the application, which fails to handle a unknown vectors. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:17357 The host is installed with Apple Safari before 6.1.3 or 7.x before 7.0.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:17356 The host is installed with Apple Safari before 6.1.3 or 7.x before 7.0.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:17359 The host is installed with Apple Safari before 6.1.3 or 7.x before 7.0.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:20869 The host is missing a security update according to Apple advisory, APPLE-SA-2014-08-13-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:20870 The host is installed with Apple Safari before 6.1.6 or 7.x before 7.0.6 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:20871 The host is installed with Apple Safari before 6.1.6 or 7.x before 7.0.6 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or cause a denial of serv ... oval:org.secpod.oval:def:17369 The host is installed with Apple Safari before 6.1.3 or 7.x before 7.0.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:17368 The host is installed with Apple Safari before 6.1.3 or 7.x before 7.0.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:17367 The host is installed with Apple Safari before 6.1.3 or 7.x before 7.0.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:17366 The host is installed with Apple Safari before 6.1.3 or 7.x before 7.0.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:17361 The host is installed with Apple Safari before 6.1.3 or 7.x before 7.0.3 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a unknown vectors. Successful exploitation could allow attackers to execute arbitrary code and bypass a san ... oval:org.secpod.oval:def:17360 The host is installed with Apple Safari before 6.1.3 or 7.x before 7.0.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:17365 The host is installed with Apple Safari before 6.1.3 or 7.x before 7.0.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:17364 The host is installed with Apple Safari before 6.1.3 or 7.x before 7.0.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:17363 The host is installed with Apple Safari before 6.1.3 or 7.x before 7.0.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:17362 The host is installed with Apple Safari before 6.1.3 or 7.x before 7.0.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:17372 The host is missing a security update according to Apple advisory, APPLE-SA-2014-04-01-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a crafted web site or unknown vectors. Successful exploitation could allow attackers to ex ... oval:org.secpod.oval:def:17371 The host is installed with Apple Safari before 6.1.3 or 7.x before 7.0.3 and is prone to a security bypass vulnerability. A flaw is present in the application, which does not properly validate WebProcess IPC messages. Successful exploitation could allow attackers to bypass a sandbox protection mecha ... oval:org.secpod.oval:def:17370 The host is installed with Apple Safari before 6.1.3 or 7.x before 7.0.3 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted web site. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18715 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18714 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18713 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18722 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18721 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18720 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18726 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18725 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18724 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18723 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18719 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18718 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18717 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18716 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18732 The host is missing a security update according to Apple advisory, APPLE-SA-2014-05-21-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:18731 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to properly handle crafted characters in a URL. Successful exploitation could allow attackers to spoof a postMessage origin, and ... oval:org.secpod.oval:def:18730 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18729 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18728 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:18727 The host is installed with Apple Safari before 6.1.4 or 7.x before 7.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:20081 The host is installed with Apple Safari before 6.1.5 or 7.x before 7.0.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:20082 The host is installed with Apple Safari before 6.1.5 or 7.x before 7.0.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:20080 The host is installed with Apple Safari before 6.1.5 or 7.x before 7.0.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:20089 The host is installed with Apple Safari before 6.1.5 or 7.x before 7.0.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:20087 The host is installed with Apple Safari before 6.1.5 or 7.x before 7.0.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:20088 The host is installed with Apple Safari before 6.1.5 or 7.x before 7.0.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:20085 The host is installed with Apple Safari before 6.1.5 or 7.x before 7.0.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:20086 The host is installed with Apple Safari before 6.1.5 or 7.x before 7.0.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:20083 The host is installed with Apple Safari before 6.1.5 or 7.x before 7.0.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:20084 The host is installed with Apple Safari before 6.1.5 or 7.x before 7.0.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:20079 The host is missing a security update according to Apple advisory, APPLE-SA-2014-06-30-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:20090 The host is installed with Apple Safari before 6.1.5 or 7.x before 7.0.5 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the servic ... oval:org.secpod.oval:def:20091 The host is installed with Apple Safari before 6.1.5 or 7.x before 7.0.5 and is prone to address bar spoofing vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:23904 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation allows attackers to perform application termination or ... oval:org.secpod.oval:def:23903 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation allows attackers to perform application termination or ... oval:org.secpod.oval:def:23902 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation allows attackers to perform application termination or ... oval:org.secpod.oval:def:23901 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation allows attackers to perform application termination or ... oval:org.secpod.oval:def:23900 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation allows attackers to perform application termination or ... oval:org.secpod.oval:def:23909 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation allows attackers to perform application termination or ... oval:org.secpod.oval:def:23907 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation allows attackers to perform application termination or ... oval:org.secpod.oval:def:23906 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation allows attackers to perform application termination or ... oval:org.secpod.oval:def:23905 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation allows attackers to perform application termination or ... oval:org.secpod.oval:def:26090 The host is installed with Apple Safari before 6.2.8, 7.x before 7.1.8 or 8.x before 8.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation may lead to an unexpected application terminati ... oval:org.secpod.oval:def:26091 The host is installed with Apple Safari before 6.2.8, 7.x before 7.1.8 or 8.x before 8.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation may lead to an unexpected application terminati ... oval:org.secpod.oval:def:26092 The host is installed with Apple Safari before 6.2.8, 7.x before 7.1.8 or 8.x before 8.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation may lead to an unexpected application terminati ... oval:org.secpod.oval:def:26093 The host is installed with Apple Safari before 6.2.8, 7.x before 7.1.8 or 8.x before 8.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation may lead to an unexpected application terminati ... oval:org.secpod.oval:def:26094 The host is installed with Apple Safari before 6.2.8, 7.x before 7.1.8 or 8.x before 8.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation may lead to an unexpected application terminati ... oval:org.secpod.oval:def:26096 The host is installed with Apple Safari before 6.2.8, 7.x before 7.1.8 or 8.x before 8.0.8 and is prone to an information disclosure vulnerability. A flaw is present in the application, which does not enforce the HTTP Strict Transport Security (HSTS) protection mechanism for Content Security Policy ... oval:org.secpod.oval:def:26097 The host is installed with Apple Safari before 6.2.8, 7.x before 7.1.8 or 8.x before 8.0.8 and is prone to a security bypass vulnerability. A flaw is present in the application, which does not enforce the HTTP Strict Transport Security (HSTS) protection mechanism for Content Security Policy (CSP) re ... oval:org.secpod.oval:def:26098 The host is installed with Apple Safari before 6.2.8, 7.x before 7.1.8 or 8.x before 8.0.8 and is prone to an information disclosure vulnerability. A flaw is present in the application, which does not properly restrict cookie transmission for report requests. Successful exploitation allows attackers ... oval:org.secpod.oval:def:26099 The host is installed with Apple Safari before 6.2.8, 7.x before 7.1.8 or 8.x before 8.0.8 and is prone to an information disclosure vulnerability. A flaw is present in the application, which does not properly perform taint checking for CANVAS elements. Successful exploitation allows attackers to by ... oval:org.secpod.oval:def:26089 The host is installed with Apple Safari before 6.2.8, 7.x before 7.1.8 or 8.x before 8.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation may lead to an unexpected application terminati ... oval:org.secpod.oval:def:26085 The host is installed with Apple Safari before 6.2.8, 7.x before 7.1.8 or 8.x before 8.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation may lead to an unexpected application terminati ... oval:org.secpod.oval:def:26086 The host is installed with Apple Safari before 6.2.8, 7.x before 7.1.8 or 8.x before 8.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation may lead to an unexpected application terminati ... oval:org.secpod.oval:def:26087 The host is installed with Apple Safari before 6.2.8, 7.x before 7.1.8 or 8.x before 8.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation may lead to an unexpected application terminati ... oval:org.secpod.oval:def:26088 The host is installed with Apple Safari before 6.2.8, 7.x before 7.1.8 or 8.x before 8.0.8 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation may lead to an unexpected application terminati ... oval:org.secpod.oval:def:23910 The host is missing a security update according to Apple advisory, APPLE-SA-2015-03-17-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a crafted website or URL. Successful exploitation allows attackers to execute arbitrary co ... oval:org.secpod.oval:def:26101 The host is installed with Apple Safari before 6.2.8, 7.x before 7.1.8 or 8.x before 8.0.8 and is prone to an user interface spoofing vulnerability. A flaw is present in the application, which fails to handle a malformed URL. Successful exploitation allows attackers to spoof the user interface. oval:org.secpod.oval:def:26100 The host is installed with Apple Safari before 6.2.8, 7.x before 7.1.8 or 8.x before 8.0.8 and is prone to an information disclosure vulnerability. A flaw is present in the application, which does not prevent caching of HTTP authentication credentials. Successful exploitation allows attackers to tra ... oval:org.secpod.oval:def:26102 The host is missing a security update according to Apple advisory, APPLE-SA-2015-08-13-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a crafted web site. Successful exploitation leads to security bypass, arbitrary code execu ... oval:org.secpod.oval:def:24370 The host is missing a security update according to Apple advisory, APPLE-SA-2015-05-06-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a crafted web site. Successful exploitation leads to bypass the Same Origin Policy, execut ... oval:org.secpod.oval:def:24076 The host is installed with Apple Safari before 6.2.5, 7.x before 7.1.5 or 8.x before 8.0.5 and is prone to an information disclosure vulnerability. A state management issue existed in Safari, which fails to handle unknown vectors. Successful exploitation leads to incomplete deletion of user's browsi ... oval:org.secpod.oval:def:24077 The host is installed with Apple Safari before 6.2.5, 7.x before 7.1.5 or 8.x before 8.0.5 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle push notification requests. Successful exploitation may reveal user's browsing history in pr ... oval:org.secpod.oval:def:24078 The host is installed with Apple Safari before 6.2.5, 7.x before 7.1.5 or 8.x before 8.0.5 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to handle a client certificate matching for SSL authentication. Successful exploitation leads to unexp ... oval:org.secpod.oval:def:24079 The host is missing a security update according to Apple advisory, APPLE-SA-2015-04-08-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a crafted website or URL. Successful exploitation leads to unexpected application terminat ... oval:org.secpod.oval:def:24070 The host is installed with Apple Safari before 6.2.5, 7.x before 7.1.5 or 8.x before 8.0.5 and is prone to an information disclosure vulnerability. A state management issue existed in Safari, which fails to handle a private browsing mode. Successful exploitation could lead to inadvertent indexing of ... oval:org.secpod.oval:def:24071 The host is installed with Apple Safari before 6.2.5, 7.x before 7.1.5 or 8.x before 8.0.5 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation leads to unexpected application termination or ... oval:org.secpod.oval:def:24072 The host is installed with Apple Safari before 6.2.5, 7.x before 7.1.5 or 8.x before 8.0.5 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation leads to unexpected application termination or ... oval:org.secpod.oval:def:24073 The host is installed with Apple Safari before 6.2.5, 7.x before 7.1.5 or 8.x before 8.0.5 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation leads to unexpected application termination or ... oval:org.secpod.oval:def:24074 The host is installed with Apple Safari before 6.2.5, 7.x before 7.1.5 or 8.x before 8.0.5 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation leads to unexpected application termination or ... oval:org.secpod.oval:def:24075 The host is installed with Apple Safari before 6.2.5, 7.x before 7.1.5 or 8.x before 8.0.5 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation leads to unexpected application termination or ... oval:org.secpod.oval:def:24069 The host is installed with Apple Safari before 6.2.5, 7.x before 7.1.5 or 8.x before 8.0.5 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to handle crafted FTP URLs. Successful exploitation may lead to resources of another origin being accessed. oval:org.secpod.oval:def:24365 The host is installed with Apple Safari before 6.2.6, 7.x before 7.1.6 or 8.x before 8.0.6 and is prone to an user interface spoofing vulnerability. A flaw is present in the webkit page loading, which does not properly handle the rel attribute in an A element. Successful exploitation could allow rem ... oval:org.secpod.oval:def:24366 The host is installed with Apple Safari before 6.2.6, 7.x before 7.1.6 or 8.x before 8.0.6 and is prone to an information disclosure vulnerability. A flaw is present in the webkit history, which fails to handle a crafted web site. Successful exploitation could allow remote attackers to bypass the Sa ... oval:org.secpod.oval:def:24367 The host is installed with Apple Safari before 6.2.6, 7.x before 7.1.6 or 8.x before 8.0.6 and is prone to a denial of service vulnerability. A flaw is present in the webkit, which fails to handle a crafted web site. Successful exploitation could allow remote attackers to execute arbitrary code or c ... oval:org.secpod.oval:def:24368 The host is installed with Apple Safari before 6.2.6, 7.x before 7.1.6 or 8.x before 8.0.6 and is prone to a denial of service vulnerability. A flaw is present in the webkit, which fails to handle a crafted web site. Successful exploitation could allow remote attackers to execute arbitrary code or c ... oval:org.secpod.oval:def:24369 The host is installed with Apple Safari before 6.2.6, 7.x before 7.1.6 or 8.x before 8.0.6 and is prone to a denial of service vulnerability. A flaw is present in the webkit, which fails to handle a crafted web site. Successful exploitation could allow remote attackers to execute arbitrary code or c ... oval:org.secpod.oval:def:23899 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation allows attackers to perform application termination or ... oval:org.secpod.oval:def:23898 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation allows attackers to perform application termination or ... oval:org.secpod.oval:def:23897 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation allows attackers to perform application termination or ... oval:org.secpod.oval:def:23896 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation allows attackers to perform application termination or ... oval:org.secpod.oval:def:23895 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation allows attackers to perform application termination or ... oval:org.secpod.oval:def:23894 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation allows attackers to perform application termination or ... oval:org.secpod.oval:def:23893 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4 and is prone to a phishing attack vulnerability. A user interface inconsistency existed in Safari, which fails to handle a crafted URL. Successful exploitation allows attackers to conduct phishing attack. oval:org.secpod.oval:def:45936 The host is installed with Apple Safari before 11.1.1 and is prone to an address bar spoofing vulnerability. A flaw is present in the applications, which fails to properly handle inconsistent user interface issues. Successful exploitation may lead to address bar spoofing. oval:org.secpod.oval:def:45944 The host is missing a security update according to Apple advisory, APPLE-SA-2018-06-01-2. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to cause arbitra ... oval:org.secpod.oval:def:2001499 An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "WebKit" com ... oval:org.secpod.oval:def:42607 The host is installed with Apple Safari before 11.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to lead to arbitrary code execution. oval:org.secpod.oval:def:42606 The host is installed with Apple Safari before 11.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to lead to arbitrary code execution. oval:org.secpod.oval:def:42605 The host is installed with Apple Safari before 11.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to lead to arbitrary code execution. oval:org.secpod.oval:def:42611 The host is installed with Apple Safari before 11.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to lead to arbitrary code execution. oval:org.secpod.oval:def:42610 The host is installed with Apple Safari before 11.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to lead to arbitrary code execution. oval:org.secpod.oval:def:42615 The host is installed with Apple Safari before 11.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to lead to arbitrary code execution. oval:org.secpod.oval:def:42614 The host is installed with Apple Safari before 11.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to lead to arbitrary code execution. oval:org.secpod.oval:def:42613 The host is installed with Apple Safari before 11.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to lead to arbitrary code execution. oval:org.secpod.oval:def:42612 The host is installed with Apple Safari before 11.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to lead to arbitrary code execution. oval:org.secpod.oval:def:42616 The host is installed with Apple Safari before 11.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to lead to arbitrary code execution. oval:org.secpod.oval:def:2000468 An issue was discovered in certain Apple products. iOS before 11.4 is affected. iOS before 11.3.1 is affected. Safari before 11.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the "WebKit" componen ... oval:org.secpod.oval:def:45307 The host is installed with Apple Safari before 11.1 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fails to properly handle a memory corruption issue. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:45305 The host is missing a security update according to Apple advisory, APPLE-SA-2018-04-24-3. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to disclose sens ... oval:org.secpod.oval:def:45884 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a race condition vulnerability. A flaw is present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:45885 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a race condition vulnerability. A flaw is present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:45895 The host is missing a security update according to Apple advisory, APPLE-SA-2018-06-01-3. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:45896 The host is missing a security update according to Apple advisory, APPLE-SA-2018-06-01-3. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:23908 The host is installed with Apple Safari before 6.2.4, 7.x before 7.1.4 or 8.x before 8.0.4, Apple Mac OS X or Server 10.10 through 10.10.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted website. Successful exploitation allows ... oval:org.secpod.oval:def:2000204 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. The issue involves the "WebKit" component. It allows remote attackers t ... oval:org.secpod.oval:def:2000464 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. The issue involves the "WebKit" component. It allows remote attackers t ... oval:org.secpod.oval:def:45942 The host is installed with Apple Safari before 11.1.1 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fails to properly handle memory issues. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:2001407 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. watchOS before 4.3 is affected. The issue involves the fetch API in the "WebKit" component. It allows ... oval:org.secpod.oval:def:46817 The host is installed with Google Chrome before 68.0.3440.75 and is prone to a cross origin information leak vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to disclose sensitive information. oval:org.secpod.oval:def:44801 The host is installed with Apple iCloud before 7.4, Apple iTunes before 12.7.4 or Google Chrome before 68.0.3440.75 and is prone to a cross-origin information disclosure vulnerability. A flaw is present in the application, which fails to properly perform input validation. Successful exploitation cou ... oval:org.secpod.oval:def:44800 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:2000406 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" compone ... oval:org.secpod.oval:def:44812 The host is installed with Apple Safari before 11.1 and is prone to a memory corrpution vulnerability. A flaw is present in the applications, which fails to properly handle a malicious website. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:44814 The host is installed with Apple Safari before 11.1 and is prone to a memory corrpution vulnerability. A flaw is present in the applications, which fails to properly handle a malicious website. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:44823 The host is installed with Apple Safari before 11.1 and is prone to a memory corrpution vulnerability. A flaw is present in the applications, which fails to properly handle a malicious website. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:44824 The host is installed with Apple Safari before 11.1 and is prone to a memory corrpution vulnerability. A flaw is present in the applications, which fails to properly handle a malicious website. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:44825 The host is installed with Apple Safari before 11.1 and is prone to a memory corrpution vulnerability. A flaw is present in the applications, which fails to properly handle a malicious website. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:44826 The host is installed with Apple Safari before 11.1 and is prone to a memory corrpution vulnerability. A flaw is present in the applications, which fails to properly handle a malicious website. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:2001604 An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "WebKit" com ... oval:org.secpod.oval:def:44821 The host is installed with Apple Safari before 11.1 and is prone to a memory corrpution vulnerability. A flaw is present in the applications, which fails to properly handle a malicious website. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:44829 The host is installed with Apple Safari before 11.1 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fails to properly handle a maliciously crafted web content. Successful exploitation may lead to a denial of service. oval:org.secpod.oval:def:44830 The host is installed with Apple Safari before 11.1 or Google Chrome before 68.0.3440.75 and is prone to a memory corruption vulnerability. A flaw is present in the applications, which fails to properly handle a maliciously crafted web content. Successful exploitation may lead to a denial of service ... oval:org.secpod.oval:def:44831 The host is missing a security update according to Apple advisory, APPLE-SA-2018-3-29-6. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly perform input validation. Successful exploitation could allow attackers to disclose sensi ... oval:org.secpod.oval:def:2000518 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" compone ... oval:org.secpod.oval:def:114649 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKit2 based WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:2000168 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" compone ... oval:org.secpod.oval:def:704068 webkit2gtk: Web content engine library for GTK+ A security issue was fixed in WebKitGTK+. oval:org.secpod.oval:def:2000156 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" compone ... oval:org.secpod.oval:def:704062 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:114541 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:2000389 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" compone ... oval:org.secpod.oval:def:114411 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKit2 based WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:114728 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:2001460 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is affected. The issue involves the "WebKit" compone ... oval:org.secpod.oval:def:704127 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:46785 The host is installed with Google Chrome before 68.0.3440.75 and is prone to a cross origin information leak vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to disclose sensitive information. oval:org.secpod.oval:def:46780 The host is installed with Google Chrome before 68.0.3440.75 and is prone to a cross origin information leak vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:46823 The host is installed with Google Chrome before 68.0.3440.75 and is prone to a cross origin information leak vulnerability. A flaw is present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:51060 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:52040 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:44784 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44786 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44793 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44795 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44796 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44797 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44798 The host is installed with Apple iCloud before 7.4 or Apple iTunes before 12.7.4 and is prone to multiple memory corruption vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:45890 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to execute a ... oval:org.secpod.oval:def:45934 The host is installed with Apple Safari before 11.1.1 and is prone to an arbitrary code execution vulnerability. A flaw is present in the applications, which fails to properly handle maliciously crafted web content. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:2000536 In Safari before 11.1.2, iTunes before 12.8 for Windows, iOS before 11.4.1, tvOS before 11.4.1, iCloud for Windows before 7.6, multiple memory corruption issues were addressed with improved memory handling. oval:org.secpod.oval:def:704284 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:46294 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle crafted content. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:46290 The host is installed with Apple iCloud before 7.6 or Apple iTunes before 12.8 and is prone to a cross-origin data bypass vulnerability. A flaw is present in the application, which fails to properly perform audio taint tracking. Successful exploitation could allow attackers to exfiltrate audio data ... oval:org.secpod.oval:def:46304 The host is missing a security update according to Apple advisory, APPLE-SA-2018-7-9-5. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a malicious website. Successful exploitation could allow attackers to spoof address bars or ... oval:org.secpod.oval:def:46307 The host is installed with Apple Safari before 11.1.2 and is prone to an unspecified vulnerability. A flaw is present in the application, which fails to properly handle a malicious website. Successful exploitation allows attackers to exfiltrate cross-origin the sound fetched through audio elements. oval:org.secpod.oval:def:46311 The host is installed with Apple Safari before 11.1.2 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle multiple memory corruption issues. Successful exploitation allows attackers to lead to arbitrary code execution. oval:org.secpod.oval:def:46303 The host is missing a security update according to Apple advisory, APPLE-SA-2018-7-9-7. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary co ... oval:org.secpod.oval:def:46302 The host is missing a security update according to Apple advisory, APPLE-SA-2018-7-9-6. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary co ... oval:org.secpod.oval:def:45886 The host is installed with Apple iCloud before 7.5 or Apple iTunes before 12.7.5 and is prone to a type confusion vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:703931 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:44922 The host is installed with Apple iCloud before 7.2 or Apple iTunes before 12.7.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:44923 The host is installed with Apple iCloud before 7.2 or Apple iTunes before 12.7.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle memory. Successful exploitation could allow attackers to execute arbitrary code. oval:org.secpod.oval:def:113665 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:42608 The host is installed with Apple Safari before 11.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to lead to arbitrary code execution. oval:org.secpod.oval:def:42609 The host is installed with Apple Safari before 11.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to lead to arbitrary code execution. oval:org.secpod.oval:def:42619 The host is missing a security update according to Apple advisory, APPLE-SA-2017-10-31-6. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to ... oval:org.secpod.oval:def:42618 The host is missing a security update according to Apple advisory, APPLE-SA-2017-10-31-5. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation allow attackers to perf ... oval:org.secpod.oval:def:42617 The host is installed with Apple Safari before 11.0.1 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could allow attackers to lead to arbitrary code execution. oval:org.secpod.oval:def:44916 The host is installed with Apple Safari before 11.0.2 and is prone to an arbitrary code execution vulnerability. A flaw is present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation may lead to arbitrary code execution. oval:org.secpod.oval:def:113634 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:113991 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:51986 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:113825 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:113612 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:113854 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:113936 WebKitGTK+ is the port of the portable web rendering engine WebKit to the GTK+ platform. This package contains WebKitGTK+ for GTK+ 3. oval:org.secpod.oval:def:703886 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:43212 The host is missing a security update according to Apple advisory, APPLE-SA-2017-12-13-3. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle maliciously crafted web content or client certificates. Successful exploitation c ... oval:org.secpod.oval:def:43213 The host is missing a security update according to apple advisory, APPLE-SA-2017-12-13-4. The update is required to fix multiple memory corruption vulnerabilities.The flaws are present in the application, which fails to properly handle maliciously crafted web content or client certificates. Successf ... oval:org.secpod.oval:def:703972 webkit2gtk: Web content engine library for GTK+ Several security issues were fixed in WebKitGTK+. oval:org.secpod.oval:def:43587 The host is missing a security update according to apple advisory, APPLE-SA-2018-1-23-6. The update is required to fix multiple memory corruption vulnerabilities.The flaws are present in the application, which fails to properly handle maliciously crafted web content. Successful exploitation could al ... oval:org.secpod.oval:def:1800708 CVE-2017-5753 Versions affected: WebKitGTK+ before 2.18.5.Impact: Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker via a side-channel analysis. This variant of the Spectre vulnerability triggers the spe ... oval:org.secpod.oval:def:27126 The host is missing a security update according to Apple advisory, APPLE-SA-2015-09-16-3. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted data. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:46789 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:46752 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:46827 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:46821 The host is missing a high severity security update according to Google advisory. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle unspecified vectors. Successful exploitation allows attackers to have unspecified impact. oval:org.secpod.oval:def:115120 Chromium is an open-source web browser, powered by WebKit . oval:org.secpod.oval:def:53380 Several vulnerabilities have been discovered in the chromium web browser. CVE-2018-4117 AhsanEjaz discovered an information leak. Rob Wu discovered a way to escalate privileges using extensions. CVE-2018-6150 Rob Wu discovered an information disclosure issue . CVE-2018-6151 Rob Wu discovered an issu ... oval:org.secpod.oval:def:115022 Chromium is an open-source web browser, powered by WebKit . |
