CVE-2013-5130

medium

Description

WebKit in Apple Safari before 6.1 disables the Private Browsing feature upon a launch of the Web Inspector, which makes it easier for context-dependent attackers to obtain browsing information by leveraging LocalStorage/ files.

References

http://lists.apple.com/archives/security-announce/2013/Oct/msg00003.html

Details

Source: MITRE

Published: 2013-10-24

Updated: 2013-10-24

Type: CWE-200

Risk Information

CVSS v2

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM