VulnerableCode Vulnerability Details

Search for vulnerabilities

System	Score	Found at
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.00595	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.03879	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
epss	0.04976	https://api.first.org/data/v1/epss?cve=CVE-2009-2841
cvssv2	5.0	https://nvd.nist.gov/vuln/detail/CVE-2009-2841

System

Score

Found at

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.00595

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.03879

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

epss

0.04976

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

cvssv2

5.0

https://nvd.nist.gov/vuln/detail/CVE-2009-2841

Reference id

Reference type

URL

http://lists.apple.com/archives/security-announce/2009/Nov/msg00001.html

http://lists.apple.com/archives/security-announce/2010/Feb/msg00000.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044023.html

http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044031.html

http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html

http://osvdb.org/59941

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-2841.json

https://api.first.org/data/v1/epss?cve=CVE-2009-2841

https://bugzilla.redhat.com/show_bug.cgi?id=525791

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2841

http://secunia.com/advisories/37346

http://secunia.com/advisories/40557

http://secunia.com/advisories/41856

http://secunia.com/advisories/43068

https://exchange.xforce.ibmcloud.com/vulnerabilities/54242

http://support.apple.com/kb/HT3949

http://support.apple.com/kb/HT4013

http://threatpost.com/en_us/blogs/apple-patches-critical-safari-vulnerabilities-111109

http://trac.webkit.org/changeset/49480

http://www.mandriva.com/security/advisories?name=MDVSA-2011:039

http://www.securityfocus.com/bid/36996

http://www.securitytracker.com/id?1023167

http://www.ubuntu.com/usn/USN-1006-1

http://www.vupen.com/english/advisories/2009/3217

http://www.vupen.com/english/advisories/2010/1801

http://www.vupen.com/english/advisories/2010/2722

http://www.vupen.com/english/advisories/2011/0212

http://www.vupen.com/english/advisories/2011/0552

559759

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559759

CVE-2009-2841

https://nvd.nist.gov/vuln/detail/CVE-2009-2841

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Date	Actor	Action	Source	VulnerableCode Version
There are no relevant records.

There are no relevant records.

Vulnerability ID	VCID-fed8-xuwk-aaaf
Aliases	CVE-2009-2841
Summary	The HTMLMediaElement::loadResource function in html/HTMLMediaElement.cpp in WebCore in WebKit before r49480, as used in Apple Safari before 4.0.4 on Mac OS X, does not perform the expected callbacks for HTML 5 media elements that have external URLs for media resources, which allows remote attackers to trigger sub-resource requests to arbitrary web sites via a crafted HTML document, as demonstrated by an HTML e-mail message that uses a media element for X-Confirm-Reading-To functionality, aka rdar problem 7271202.
Status	Published
Exploitability	0.5
Weighted Severity	4.5
Risk	2.2
Affected and Fixed Packages	Package Details

Percentile	0.78779
EPSS Score	0.00595
Published At	Nov. 1, 2024, midnight