Medium severity6.5NVD Advisory· Published Feb 20, 2017· Updated Jun 17, 2026
CVE-2017-2365
CVE-2017-2365
Description
An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
19cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*range: <10.0.3
- (no CPE)range: <10.0.3
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*range: <10.1.1
- (no CPE)range: <10.1.1
- Range: <10.2.1
- osv-coords12 versionspkg:rpm/opensuse/gtk3&distro=openSUSE%20Tumbleweedpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20Raspberry%20Pi%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP3
< 2.32.4-1.1+ 11 more
- (no CPE)range: < 2.32.4-1.1
- (no CPE)range: < 2.18.0-2.9.1
- (no CPE)range: < 2.18.0-2.9.1
- (no CPE)range: < 2.18.0-2.9.1
- (no CPE)range: < 2.18.0-2.9.1
- (no CPE)range: < 2.18.0-2.9.1
- (no CPE)range: < 2.18.0-2.9.1
- (no CPE)range: < 2.18.0-2.9.1
- (no CPE)range: < 2.18.0-2.9.1
- (no CPE)range: < 2.18.0-2.9.1
- (no CPE)range: < 2.18.0-2.9.1
- (no CPE)range: < 2.18.0-2.9.1
Patches
Vulnerability mechanics
References
7- www.exploit-db.com/exploits/41453/nvdExploitThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/95727nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1037668nvdThird Party AdvisoryVDB Entry
- security.gentoo.org/glsa/201706-15nvdThird Party Advisory
- support.apple.com/HT207482nvdVendor Advisory
- support.apple.com/HT207484nvdVendor Advisory
- support.apple.com/HT207485nvdVendor Advisory
News mentions
0No linked articles in our index yet.