Vulnerability Details : CVE-2015-3752
The Content Security Policy implementation in WebKit in Apple Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, as used in iOS before 8.4.1 and other products, does not properly restrict cookie transmission for report requests, which allows remote attackers to obtain sensitive information via vectors involving (1) a cross-origin request or (2) a private-browsing request.
Publish Date : 2015-08-16 Last Update Date : 2015-08-16
- CVSS Scores & Vulnerability Types
- Products Affected By CVE-2015-3752
- References For CVE-2015-3752
- Metasploit Modules Related To CVE-2015-3752
There are not any metasploit modules related to this vulnerability (Please visit www.metasploit.com for more information)