PT-2017-17516 · Apple · Icloud+3
Oliver Paukstadt
·
Publicado
2017-10-23
·
Atualizado
2017-10-26
·
CVE-2017-7106
CVSS v3.1
6.5
Média
| Vetor | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
iOS versions prior to 11
Safari versions prior to 11
iCloud versions prior to 7.0 on Windows
Description
The issue involves the WebKit component and allows remote attackers to spoof the address bar. This can be exploited by attackers to deceive users about the actual website they are visiting.
Recommendations
For iOS versions prior to 11, update to version 11 or later.
For Safari versions prior to 11, update to version 11 or later.
For iCloud versions prior to 7.0 on Windows, update to version 7.0 or later.
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Safari
Webkit
Icloud
Ios