Security Advisory

CVE-2014-4363

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-09-18 10:00:00

Last updated 2024-08-06 11:12:35

Assigner apple

State PUBLISHED

Description

Safari in Apple iOS before 8 does not properly restrict the autofilling of passwords in forms, which allows remote attackers to obtain sensitive information via (1) an http web site, (2) an https web site with an unacceptable X.509 certificate, or (3) an IFRAME element.

← Browse all CVEs View on cve.org ↗