CVSS: 9.3EPSS: 0%CPEs: 6EXPL: 0CVE-2017-7127
https://notcve.org/view.php?id=CVE-2017-7127
An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. iCloud before 7.0 on Windows is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "SQLite" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de iOS anteriores a la 11, las versiones de macOS anteriores a la 10.13, las versiones de iCloud para Windows anteriores a la 7.0, las versiones de tvOS anteriores a la 11 y las versiones de watchOS anteriores a la 4. • http://www.securityfocus.com/bid/100990 http://www.securitytracker.com/id/1039427 https://support.apple.com/HT208112 https://support.apple.com/HT208113 https://support.apple.com/HT208115 https://support.apple.com/HT208142 https://support.apple.com/HT208144 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 8%CPEs: 6EXPL: 1CVE-2017-7117 – WebKit JSC - 'BytecodeGenerator::emitGetByVal' Incorrect Optimization
https://notcve.org/view.php?id=CVE-2017-7117
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en ciertos productos Apple. • https://www.exploit-db.com/exploits/42955 http://www.securityfocus.com/bid/101006 http://www.securitytracker.com/id/1039384 http://www.securitytracker.com/id/1039428 https://support.apple.com/HT208112 https://support.apple.com/HT208113 https://support.apple.com/HT208116 https://support.apple.com/HT208141 https://support.apple.com/HT208142 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2017-7094
https://notcve.org/view.php?id=CVE-2017-7094
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en ciertos productos Apple. • http://www.securityfocus.com/bid/100995 http://www.securitytracker.com/id/1039384 http://www.securitytracker.com/id/1039428 https://support.apple.com/HT208112 https://support.apple.com/HT208113 https://support.apple.com/HT208116 https://support.apple.com/HT208141 https://support.apple.com/HT208142 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.1EPSS: 0%CPEs: 6EXPL: 0CVE-2017-7109
https://notcve.org/view.php?id=CVE-2017-7109
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. A cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via crafted web content that incorrectly interacts with the Application Cache policy. Se ha descubierto un problema en ciertos productos Apple. • http://www.securityfocus.com/bid/101005 http://www.securitytracker.com/id/1039384 http://www.securitytracker.com/id/1039428 https://support.apple.com/HT208112 https://support.apple.com/HT208113 https://support.apple.com/HT208116 https://support.apple.com/HT208141 https://support.apple.com/HT208142 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2017-7099
https://notcve.org/view.php?id=CVE-2017-7099
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site. Se ha descubierto un problema en ciertos productos Apple. • http://www.securityfocus.com/bid/100998 http://www.securitytracker.com/id/1039384 http://www.securitytracker.com/id/1039428 https://support.apple.com/HT208112 https://support.apple.com/HT208113 https://support.apple.com/HT208116 https://support.apple.com/HT208141 https://support.apple.com/HT208142 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •