Search for vulnerabilities
Vulnerability details: VCID-ncvy-f4dz-aaan
Vulnerability ID VCID-ncvy-f4dz-aaan
Aliases CVE-2010-3829
Summary WebKit in Apple iOS before 4.2 allows remote attackers to bypass the remote image loading setting in Mail via an HTML LINK element with a DNS prefetching property, as demonstrated by an HTML e-mail message that uses a LINK element for X-Confirm-Reading-To functionality, a related issue to CVE-2010-3813.
Status Published
Exploitability 0.5
Weighted Severity 5.2
Risk 2.6
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-264 Permissions, Privileges, and Access Controls
System Score Found at
generic_textual Low http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html
generic_textual Low http://people.canonical.com/~ubuntu-security/cve/2010/CVE-2010-3829.html
epss 0.00520 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00520 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00520 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00520 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00520 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00520 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00520 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00520 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00520 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00520 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00520 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00520 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00520 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00520 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00520 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00617 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
epss 0.00874 https://api.first.org/data/v1/epss?cve=CVE-2010-3829
generic_textual Low https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3829
cvssv2 5.8 https://nvd.nist.gov/vuln/detail/CVE-2010-3829
generic_textual Low http://support.apple.com/kb/HT4456
Reference id Reference type URL
http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html
http://lists.apple.com/archives/security-announce/2011//Jul/msg00002.html
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
http://people.canonical.com/~ubuntu-security/cve/2010/CVE-2010-3829.html
https://api.first.org/data/v1/epss?cve=CVE-2010-3829
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3829
http://secunia.com/advisories/42314
http://secunia.com/advisories/43068
https://exchange.xforce.ibmcloud.com/vulnerabilities/63418
http://support.apple.com/kb/HT4456
http://support.apple.com/kb/HT4808
http://www.securitytracker.com/id?1024773
http://www.vupen.com/english/advisories/2010/3046
http://www.vupen.com/english/advisories/2011/0212
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.0.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:1.0.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.0.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:1.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.0.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:1.0.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:1.1.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:1.1.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:1.1.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:1.1.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:1.1.4:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:1.1.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:1.1.5:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:2.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.0.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:2.0.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.0.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:2.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.0.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:2.0.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:2.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.1.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:2.1.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:2.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:2.2.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:2.2.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:3.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.0.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:3.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:3.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.1.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:3.1.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.1.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:3.1.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:3.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.2.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:3.2.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:3.2.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:3.2.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:4.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.0.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:4.0.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:4.0.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:iphone_os:4.0.2:*:*:*:*:*:*:*
CVE-2010-3829 https://nvd.nist.gov/vuln/detail/CVE-2010-3829
No exploits are available.
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2010-3829
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.77270
EPSS Score 0.00520
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.