Apple · Safari · CVE-2015-1128
**Name of the Vulnerable Software and Affected Versions**
Apple Safari versions prior to 6.2.5
Apple Safari versions 7.x prior to 7.1.5
Apple Safari versions 8.x prior to 8.0.5
**Description**
The issue affects the private-browsing implementation, allowing attackers to obtain sensitive browsing-history information. This is achieved through vectors involving push-notification requests.
**Recommendations**
For Apple Safari versions prior to 6.2.5, update to version 6.2.5 or later.
For Apple Safari versions 7.x prior to 7.1.5, update to version 7.1.5 or later.
For Apple Safari versions 8.x prior to 8.0.5, update to version 8.0.5 or later.