WebKit in Apple iOS before 9 allows remote attackers to bypass the Same Origin Policy and obtain an object reference via vectors involving a (1) custom event, (2) message event, or (3) pop state event.
References
Information
Published : 2015-09-18 03:59
Updated : 2016-12-21 19:00
NVD link : CVE-2015-5827
Mitre link : CVE-2015-5827
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
apple
- safari
- iphone_os