Описание
An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site that uses HTTP redirects.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | ignored | no update available |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was ignored [no update available]] |
| esm-infra/xenial | ignored | no update available |
| precise | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | DNE | trusty was ignored [no update available] |
| upstream | needs-triage | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| xenial | ignored | end of standard support |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | ignored | no update available |
| esm-apps/xenial | ignored | no update available |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was ignored [no update available]] |
| precise | ignored | end of life |
| trusty | ignored | end of standard support |
| trusty/esm | DNE | trusty was ignored [no update available] |
| upstream | needs-triage | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| xenial | ignored | end of standard support |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| precise | ignored | end of life |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needs-triage | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| xenial | DNE | |
| yakkety | DNE |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.14.3-1 |
| esm-infra-legacy/trusty | DNE | |
| esm-infra/xenial | released | 2.14.3-0ubuntu0.16.04.1 |
| precise | DNE | |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | released | 2.14.3 |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| xenial | released | 2.14.3-0ubuntu0.16.04.1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | ignored | no update available |
| esm-apps/xenial | ignored | no update available |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was ignored [no update available]] |
| precise | DNE | |
| trusty | ignored | end of standard support |
| trusty/esm | DNE | trusty was ignored [no update available] |
| upstream | needs-triage | |
| vivid/stable-phone-overlay | DNE | |
| vivid/ubuntu-core | DNE | |
| xenial | ignored | end of standard support |
Показывать по
4.3 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site that uses HTTP redirects.
An issue was discovered in certain Apple products. iOS before 10.2 is ...
An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. iCloud before 6.1 is affected. iTunes before 12.5.4 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site that uses HTTP redirects.
Уязвимость операционной системы iOS, мультимедийного проигрывателя iTunes и браузера Safari, позволяющая нарушителю получить конфиденциальную информацию или обойти существующую политику ограничения доступа
4.3 Medium
CVSS2
6.5 Medium
CVSS3