CVE-2017-7013: An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. iCloud before 6.2.2 on Windows is affected…

CVE-2017-7013 [HIGH] CVE-2017-7013: iTunes 12.6.2 for Windows Apple Security Update: About the security content of iTunes 12.6.2 for Windows Product: iTunes 12.6.2 for Windows CVE: CVE-2017-7013 Component: About Apple security updates Impact: An application may be able to execute arbitrary code with system privileges Description: An access issue was addressed with additional restrictions.

CVE-2017-7013 [HIGH] CVE-2017-7013: iOS 10.3.3 Apple Security Update: About the security content of iOS 10.3.3 Product: iOS Version: 10.3.3 CVE: CVE-2017-7013 Component: Kernel Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization.

CVE-2017-7013 [HIGH] CVE-2017-7013: tvOS 10.2.2 Apple Security Update: About the security content of tvOS 10.2.2 Product: tvOS Version: 10.2.2 CVE: CVE-2017-7013 Component: Kernel Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization.

CVE-2017-7013 [HIGH] CVE-2017-7013: macOS Sierra 10.12.6, Security Update 2017-003 El Capitan, and Security Update 2017-003 Yosemite Apple Security Update: About the security content of macOS Sierra 10.12.6, Security Update 2017-003 El Capitan, and Security Update 2017-003 Yosemite Product: macOS Sierra 10.12.6, Security Update 2017-003 El Capitan, and Security Update 2017-003 Yosemite CVE: CVE-2017-7013 Component: Kernel Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization.

CVE-2017-7013 [HIGH] CVE-2017-7013: iCloud for Windows 6.2.2 Apple Security Update: About the security content of iCloud for Windows 6.2.2 Product: iCloud for Windows Version: 6.2.2 CVE: CVE-2017-7013 Component: About Apple security updates Impact: Parsing a maliciously crafted XML document may lead to disclosure of user information Description: An out-of-bounds read was addressed through improved bounds checking.

CVE-2017-7013 [HIGH] CVE-2017-7013: watchOS 3.2.3 Apple Security Update: About the security content of watchOS 3.2.3 Product: watchOS Version: 3.2.3 CVE: CVE-2017-7013 Component: Kernel Impact: An application may be able to read restricted memory Description: A validation issue was addressed with improved input sanitization.

CVE-2017-7013 [HIGH] CWE-125 GHSA-cjcf-pw36-x638: An issue was discovered in certain Apple products An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. watchOS before 3.2.3 is affected. The issue involves the "libxml2" component. It allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and application crash) via a crafted XML file.