An issue exists in certain Apple products. iOS prior to 11.3 is affected. Safari prior to 11.1 is affected. iCloud prior to 7.4 on Windows is affected. iTunes prior to 12.7.4 on Windows is affected. watchOS prior to 4.3 is affected. The issue involves the fetch API in the "WebKit" component. It allows remote malicious users to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple safari |
||
apple iphone os |
||
apple watchos |
||
apple icloud |
||
apple itunes |
||
webkitgtk webkitgtk\\+ |
||
redhat enterprise linux server 6.0 |
||
canonical ubuntu linux 16.04 |
||
debian debian linux 9.0 |
||
redhat enterprise linux desktop 6.0 |
||
redhat enterprise linux workstation 6.0 |
||
canonical ubuntu linux 17.10 |