CVE-2016-4603

EUVD-2016-5589
Web Media in Apple iOS before 9.3.3 allows attackers to bypass the Private Browsing protection mechanism and obtain sensitive video URL information by leveraging Safari View Controller misbehavior.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 52%
Affected Products (NVD)
VendorProductVersion
appleiphone_os
𝑥
≤ 9.3.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://lists.apple.com/archives/security-announce/2016/Jul/msg00001.html
http://www.securityfocus.com/bid/91825
http://www.securitytracker.com/id/1036344
https://support.apple.com/HT206902
http://lists.apple.com/archives/security-announce/2016/Jul/msg00001.html
http://www.securityfocus.com/bid/91825
http://www.securitytracker.com/id/1036344
https://support.apple.com/HT206902