Bypassing Same Origin Policy in WebKit Canvas Implementation in Apple iOS

Bypassing Same Origin Policy in WebKit Canvas Implementation in Apple iOS

CVE-2015-5788 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

The WebKit Canvas implementation in Apple iOS before 9 allows remote attackers to bypass the Same Origin Policy and obtain sensitive image information via vectors involving a CANVAS element.

Learn more about our Cis Benchmark Audit For Apple Ios.