Back to search
CVE-2017-7109
Published: Oct 23, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. A cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via crafted web content that incorrectly interacts with the Application Cache policy.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
101005
vdb-entry
x_refsource_BID
https://support.apple.com/HT208141
x_refsource_CONFIRM
1039384
vdb-entry
x_refsource_SECTRACK
https://support.apple.com/HT208142
x_refsource_CONFIRM
https://support.apple.com/HT208113
x_refsource_CONFIRM
https://support.apple.com/HT208112
x_refsource_CONFIRM
1039428
vdb-entry
x_refsource_SECTRACK
https://support.apple.com/HT208116
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now