CVE-2017-2359 โ€” Apple Safari vulnerability

3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.2%
top 52.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Safari
Timeline
PublishedFeb 20
Latest updateMay 13

Description

An issue was discovered in certain Apple products. Safari before 10.0.3 is affected. The issue involves the "Safari" component, which allows remote attackers to spoof the address bar via a crafted web site.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

โ–ถNVDapple/safari10.0.2
โ–ถAppleapple/safari10.0.3

๐Ÿ”ดVulnerability Details

1
GHSA
GHSA-mj48-xc79-4xqp: An issue was discovered in certain Apple productsโ†—2022-05-13
โ–ถ

๐Ÿ“‹Vendor Advisories

1
Apple
CVE-2017-2359: Safari 10.0.3โ†—2017-01-23
โ–ถ
CVE-2017-2359 โ€” Apple Safari vulnerability | cvebase