Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The document.cookie API implementation in the CFNetwork Cookies subsystem in WebKit in Apple iOS before 9 allows remote attackers to bypass an intended single-cookie restriction via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple iOS WebKit CFNetwork Cookies子系统权限许可和访问控制漏洞
Vulnerability Description
Apple iOS是美国苹果(Apple)公司为移动设备所开发的一套操作系统。WebKit是KDE、苹果(Apple)、谷歌(Google)等公司共同开发的一套开源Web浏览器引擎,目前被Apple Safari及Google Chrome等浏览器使用。 Apple iOS 9之前版本的WebKit中的CFNetwork Cookies子系统的document.cookie API实现过程中存在安全漏洞。远程攻击者可利用该漏洞绕过既定的single-cookie限制。
CVSS Information
N/A
Vulnerability Type
N/A