MEDIUM
Webkit
CVE published 2017-02-03
CVE-2016-9642
CVE-2016-9642 describes a denial-of-service issue in WebKit’s JavaScriptCore engine caused by an out-of-bounds heap read. The issue is classified as CWE-125 and, per NVD, has a CVSS 3.0 score of 5.5 (MEDIUM) with availability impact only. The supplied CVSS vector indicates local access plus user interaction, which fits a scenario where a crafted JavaScript file is opened or otherwise processed by the affe [truncated]