Published: 22/05/2017 Updated: 08/03/2019

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 605

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

An issue exists in certain Apple products. iOS prior to 10.3.2 is affected. Safari prior to 10.1.1 is affected. iCloud prior to 6.2.1 on Windows is affected. tvOS prior to 10.2.1 is affected. The issue involves the "WebKit" component. It allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple safari
apple iphone os
apple tvos
apple icloud

It's 2017 – and your Mac, iPad, iPhone can all be pwned by an e-book

The Register • Shaun Nichols in San Francisco • 16 May 2017

Seven Apple updates, because it's not like you had anything else to patch today

Apple has released security updates for both of its main operating systems, along with iTunes, Apple Watch, and Apple TV. All should be installed as soon as possible before they are exploited by miscreants. The updates, numbering seven in total, include fixes for security vulnerabilities in the Safari browser and WebKit engine. For iPhone and iPad, Apple has kicked out iOS 10.3.2. The update addresses a total of 41 CVE-listed vulnerabilities in the mobile OS, with 23 of those being flaws in WebK...

CVE-2017-2530

Vulnerability Summary

Recent Articles

References

Vulmon Search

About

Products

Connect