cvedb.io
CVE-2016-4583
LOW · CVSS 3.1
EPSS exploitation probability: 0%
Published 2016-07-22T02:59:05.583 · Last modified 2026-06-17T00:47:50.283

Summary

WebKit in Apple iOS before 9.3.3, Safari before 9.1.2, and tvOS before 9.2.2 allows remote attackers to bypass the Same Origin Policy and obtain image date from an unintended web site via a timing attack involving an SVG document.

Affected products

apple — webkit

Does this affect you?

Add your gear to cvedb and we'll alert you only when apple ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.