Same Origin Policy Bypass in WebKit on Apple iOS before 9

Same Origin Policy Bypass in WebKit on Apple iOS before 9

CVE-2015-5827 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

WebKit in Apple iOS before 9 allows remote attackers to bypass the Same Origin Policy and obtain an object reference via vectors involving a (1) custom event, (2) message event, or (3) pop state event.

Learn more about our Cis Benchmark Audit For Apple Ios.