High severity8.8NVD Advisory· Published Apr 2, 2017· Updated Jun 17, 2026
CVE-2017-2378
CVE-2017-2378
Description
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. The issue involves bookmark creation in the "WebKit" component. It allows remote attackers to execute arbitrary code or spoof a bookmark by leveraging mishandling of links during drag-and-drop actions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*range: <=10.0.3
- (no CPE)range: <10.1
- Range: <10.3
- Range: <10.3
Patches
Vulnerability mechanics
References
4- www.securityfocus.com/bid/97129nvdThird Party AdvisoryVDB Entry
- support.apple.com/HT207600nvdVendor Advisory
- support.apple.com/HT207617nvdVendor Advisory
- www.securitytracker.com/id/1038137nvd
News mentions
0No linked articles in our index yet.