An issue exists in certain Apple products. iOS prior to 10.3.3 is affected. Safari prior to 10.1.2 is affected. tvOS prior to 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote malicious users to conduct a timing side-channel attack to bypass the Same Origin Policy and obtain sensitive information via a crafted web site that uses SVG filters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple safari |
||
apple tvos |
||
apple iphone os |
||
apple webkit - |