CVE-2017-2495 — Improper Input Validation in Apple

Vendor	Product	Version range	Fixed in
apple	ios	—	—
apple	iphone_os	<= 10.3.1	—
apple	safari	<= 10.1	—
apple	safari	—	—

GHSA

GHSA-pv5q-fq66-pxc9: An issue was discovered in certain Apple products

ghsa_unreviewed·2022-05-17

CVE-2017-2495 [MEDIUM] CWE-20 GHSA-pv5q-fq66-pxc9: An issue was discovered in certain Apple products An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. The issue involves the "Safari" component. It allows remote attackers to cause a denial of service (application crash) via a crafted web site that improperly interacts with the history menu.

Apple

CVE-2017-2495: Safari 10.1.1

vendor_apple·2017-05-15·CVSS 6.5

CVE-2017-2495 [MEDIUM] CVE-2017-2495: Safari 10.1.1 Apple Security Update: About the security content of Safari 10.1.1 Product: Safari Version: 10.1.1 CVE: CVE-2017-2495 Component: Safari Impact: Visiting a maliciously crafted webpage may lead to an application denial of service Description: An issue in Safari's history menu was addressed through improved memory handling.

Apple

CVE-2017-2495: iOS 10.3.2

vendor_apple·2017-05-15·CVSS 6.5

CVE-2017-2495 [MEDIUM] CVE-2017-2495: iOS 10.3.2 Apple Security Update: About the security content of iOS 10.3.2 Product: iOS Version: 10.3.2 CVE: CVE-2017-2495 Component: Safari Impact: Visiting a maliciously crafted webpage may lead to an application denial of service Description: An issue in Safari's history menu was addressed through improved memory handling.

CVE-2017-2495: An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. The issue involves the "Safari" component…

Affected

CVSS provenance