VIR Vulnerability Intelligence Relay

CVE-2014-1340

medium
Published 2014-07-01 · Modified 2026-05-06
CVSS v3
CVSS v2
6.8
VIR risk
6.8

Description

WebKit, as used in Apple Safari before 6.1.5 and 7.x before 7.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-06-30-1.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

Application impact
VendorProductVersionsFixed
macos applesafari7.0
macos applesafari7.0.1
macos applesafari7.0.2
macos applesafari7.0.3
macos applesafari7.0.4
macos applesafari{"endIncluding":"6.1.4"}
macos applesafari6.0
macos applesafari6.0.1
macos applesafari6.0.2
macos applesafari6.0.3
macos applesafari6.0.4
macos applesafari6.0.5
macos applesafari6.1
macos applesafari6.1.1
macos applesafari6.1.2
macos applesafari6.1.3

References

CWEs

CWE-119

Verify integrity in audit chain (admin only). AS-IS.