Back to search
CVE-2017-13804
Published: Nov 13, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
An issue was discovered in certain Apple products. iOS before 11.1 is affected. macOS before 10.13.1 is affected. tvOS before 11.1 is affected. watchOS before 4.1 is affected. The issue involves the "StreamingZip" component. It allows remote attackers to write to unintended pathnames via a crafted ZIP archive.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://support.apple.com/HT208221
x_refsource_CONFIRM
https://support.apple.com/HT208222
x_refsource_CONFIRM
https://support.apple.com/HT208220
x_refsource_CONFIRM
https://support.apple.com/HT208219
x_refsource_CONFIRM
1039703
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now