An issue exists in certain Apple products. iOS prior to 11.1 is affected. macOS prior to 10.13.1 is affected. tvOS prior to 11.1 is affected. watchOS prior to 4.1 is affected. The issue involves the "StreamingZip" component. It allows remote malicious users to write to unintended pathnames via a crafted ZIP archive.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x |
||
apple tvos |
||
apple iphone os |
||
apple watchos |