|
248561
|
3.3 |
LOW
Local
|
apple
|
iphone_os
|
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Location Framework" component. It allows attackers to obtain sensitive location information via a…
|
CWE-200
Information Exposure
|
CVE-2017-7148
|
2024-11-21 12:31 |
2017-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248562
|
5.3 |
MEDIUM
Network
|
apple
|
apple_support
|
An issue was discovered in certain Apple products. The Apple Support app before 1.2 for iOS is affected. The issue involves the "Analytics" component. It allows remote attackers to obtain sensitive a…
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2017-7147
|
2024-11-21 12:31 |
2017-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248563
|
5.3 |
MEDIUM
Network
|
apple
|
iphone_os
|
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Security" component. It allows attackers to track users across installs via a crafted app that le…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2017-7146
|
2024-11-21 12:31 |
2017-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248564
|
5.3 |
MEDIUM
Network
|
apple
|
iphone_os
|
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Time" component. The "Setting Time Zone" feature mishandles the possibility of using location dat…
|
CWE-275
Permission Issues
|
CVE-2017-7145
|
2024-11-21 12:31 |
2017-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248565
|
4.3 |
MEDIUM
Network
|
apple
|
iphone_os
safari
|
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to track Safari Priva…
|
CWE-275
Permission Issues
|
CVE-2017-7144
|
2024-11-21 12:31 |
2017-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248566
|
5.5 |
MEDIUM
Local
|
apple
|
mac_os_x
|
An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Captive Network Assistant" component. It allows remote attackers to discover cleartext passw…
|
NVD-CWE-noinfo
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2017-7143
|
2024-11-21 12:31 |
2017-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248567
|
5.3 |
MEDIUM
Network
|
apple
|
safari
|
An issue was discovered in certain Apple products. Safari before 11 is affected. The issue involves the "WebKit Storage" component. It allows attackers to bypass the Safari Private Browsing protectio…
|
CWE-200
Information Exposure
|
CVE-2017-7142
|
2024-11-21 12:31 |
2017-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248568
|
5.3 |
MEDIUM
Network
|
apple
|
mac_os_x
|
An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Mail" component. It allows remote attackers to bypass an intended off value of the "Load rem…
|
CWE-200
Information Exposure
|
CVE-2017-7141
|
2024-11-21 12:31 |
2017-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248569
|
5.3 |
MEDIUM
Network
|
apple
|
iphone_os
|
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Keyboard Suggestions" component. It allows attackers to obtain sensitive information by reading k…
|
CWE-200
Information Exposure
|
CVE-2017-7140
|
2024-11-21 12:31 |
2017-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248570
|
2.4 |
LOW
Physics
|
apple
|
iphone_os
|
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Phone" component. It allows attackers to obtain sensitive information by leveraging a timing bug …
|
CWE-200
Information Exposure
|
CVE-2017-7139
|
2024-11-21 12:31 |
2017-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
