Published: 22/05/2017 Updated: 08/07/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

An issue exists in certain Apple products. iOS prior to 10.3.2 is affected. The issue involves the "Security" component. It allows malicious users to bypass intended access restrictions via an untrusted certificate.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple iphone os

It's 2017 – and your Mac, iPad, iPhone can all be pwned by an e-book

The Register • Shaun Nichols in San Francisco • 16 May 2017

Seven Apple updates, because it's not like you had anything else to patch today

Apple has released security updates for both of its main operating systems, along with iTunes, Apple Watch, and Apple TV. All should be installed as soon as possible before they are exploited by miscreants. The updates, numbering seven in total, include fixes for security vulnerabilities in the Safari browser and WebKit engine. For iPhone and iPad, Apple has kicked out iOS 10.3.2. The update addresses a total of 41 CVE-listed vulnerabilities in the mobile OS, with 23 of those being flaws in WebK...

CVE-2017-2498

Vulnerability Summary

Recent Articles

References

Vulmon Search

About

Products

Connect