CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7058
https://notcve.org/view.php?id=CVE-2017-7058
An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. The issue involves the "Notifications" component. It allows physically proximate attackers to read unintended notifications on the lock screen. Se detectó un problema en ciertos productos de Apple. iOS anterior a la versión 10.3.3 está afectado. El problema involucra el componente "Notifications". • http://www.securityfocus.com/bid/99891 http://www.securitytracker.com/id/1038950 https://support.apple.com/HT207923 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-2517
https://notcve.org/view.php?id=CVE-2017-2517
An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. The issue involves the "Safari" component. It allows remote attackers to spoof the address bar via a crafted web site. Se detectó un problema en ciertos productos de Apple. iOS anterior a la versión 10.3.3 está afectado. El problema involucra el componente "Safari". • http://www.securityfocus.com/bid/99891 http://www.securitytracker.com/id/1038950 https://support.apple.com/HT207923 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7007
https://notcve.org/view.php?id=CVE-2017-7007
An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. The issue involves the "EventKitUI" component. It allows remote attackers to cause a denial of service (resource consumption and application crash). Se detectó un problema en ciertos productos de Apple. iOS anterior a la versión 10.3.3 está afectado. El problema involucra el componente "EventKitUI". • http://www.securityfocus.com/bid/99891 http://www.securitytracker.com/id/1038950 https://support.apple.com/HT207923 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 1%CPEs: 3EXPL: 0CVE-2017-7008
https://notcve.org/view.php?id=CVE-2017-7008
An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is affected. The issue involves the "CoreAudio" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file. Fue encontrado un problema en ciertos productos de Apple. iOS anterior a versión 10.3.3 se ve afectado. MacOS anterior a versión 10.12.6 se ve afectado. • http://www.securityfocus.com/bid/99880 http://www.securitytracker.com/id/1038950 https://support.apple.com/HT207922 https://support.apple.com/HT207923 https://support.apple.com/HT207924 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.1EPSS: 0%CPEs: 3EXPL: 0CVE-2017-7059
https://notcve.org/view.php?id=CVE-2017-7059
A DOMParser XSS issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. Fue encontrado un problema de XSS de DOMParser en ciertos productos de Apple. iOS versión anterior a 10.3.3 se ve afectado. Safari versión anterior a 10.1.2 se ve afectado. • http://www.securityfocus.com/bid/99886 http://www.securitytracker.com/id/1038950 https://support.apple.com/HT207921 https://support.apple.com/HT207923 https://support.apple.com/HT207924 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •