CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7113 – Apple Security Advisory 2017-10-31-1
https://notcve.org/view.php?id=CVE-2017-7113
02 Nov 2017 — An issue was discovered in certain Apple products. iOS before 11.1 is affected. The issue involves the "UIKit" component. It allows attackers to bypass intended read restrictions for secure text fields via vectors involving a focus-change event. Se ha descubierto un problema en algunos productos Apple. Las versiones de iOS anteriores a la 11.1 se han visto afectadas. • http://www.securitytracker.com/id/1039703 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 14%CPEs: 7EXPL: 2CVE-2017-13783 – WebKit - 'WebCore::SVGPatternElement::collectPatternAttributes' Out-of-Bounds Read
https://notcve.org/view.php?id=CVE-2017-13783
01 Nov 2017 — An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en algunos productos Apple. • https://packetstorm.news/files/id/145090 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 2%CPEs: 3EXPL: 1CVE-2017-13849 – iOS < 11.1 / tvOS < 11.1 / watchOS < 4.1 - Denial of Service
https://notcve.org/view.php?id=CVE-2017-13849
01 Nov 2017 — An issue was discovered in certain Apple products. iOS before 11.1 is affected. tvOS before 11.1 is affected. watchOS before 4.1 is affected. The issue involves the "CoreText" component. It allows remote attackers to cause a denial of service (application crash) via a crafted text file. Se ha descubierto un problema en algunos productos Apple. Las versiones de iOS anteriores a la 11.1, las versiones de tvOS anteriores a la 11.1 y las versiones de watchOS anteriores a la 4.1 se han visto afectadas. • https://www.exploit-db.com/exploits/43161 • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 14%CPEs: 7EXPL: 2CVE-2017-13785 – WebKit - 'WebCore::RenderText::localCaretRect' Out-of-Bounds Read
https://notcve.org/view.php?id=CVE-2017-13785
01 Nov 2017 — An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en algunos productos Apple. • https://packetstorm.news/files/id/145088 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 14%CPEs: 7EXPL: 2CVE-2017-13796 – WebKit - 'WebCore::TreeScope::documentScope' Use-After-Free
https://notcve.org/view.php?id=CVE-2017-13796
01 Nov 2017 — An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en algunos productos Apple. • https://packetstorm.news/files/id/145084 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 7EXPL: 0CVE-2017-13793 – Apple Safari Node Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2017-13793
01 Nov 2017 — An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en algunos productos Apple. • http://www.securitytracker.com/id/1039703 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 14%CPEs: 7EXPL: 2CVE-2017-13792 – WebKit - 'WebCore::InputType::element' Use-After-Free
https://notcve.org/view.php?id=CVE-2017-13792
01 Nov 2017 — An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en algunos productos Apple. • https://packetstorm.news/files/id/145085 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 14%CPEs: 7EXPL: 2CVE-2017-13802 – WebKit - 'WebCore::Style::TreeResolver::styleForElement' Use-After-Free
https://notcve.org/view.php?id=CVE-2017-13802
01 Nov 2017 — An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en algunos productos Apple. • https://packetstorm.news/files/id/145091 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 14%CPEs: 7EXPL: 2CVE-2017-13791 – WebKit - 'WebCore::FormSubmission::create' Use-After-Free
https://notcve.org/view.php?id=CVE-2017-13791
01 Nov 2017 — An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en algunos productos Apple. • https://packetstorm.news/files/id/145102 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 1%CPEs: 7EXPL: 0CVE-2017-13803 – Gentoo Linux Security Advisory 201712-01
https://notcve.org/view.php?id=CVE-2017-13803
01 Nov 2017 — An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en algunos productos Apple. • http://www.securitytracker.com/id/1039703 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •