Medium severity6.1NVD Advisory· Published May 22, 2017· Updated Jun 17, 2026
CVE-2017-2504
CVE-2017-2504
Description
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. tvOS before 10.2.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to conduct Universal XSS (UXSS) attacks via a crafted web site that improperly interacts with WebKit Editor commands.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
7- www.exploit-db.com/exploits/42064/nvdExploitThird Party AdvisoryVDB Entry
- www.securityfocus.com/bid/98473nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1038487nvdThird Party AdvisoryVDB Entry
- security.gentoo.org/glsa/201706-15nvdThird Party Advisory
- support.apple.com/HT207798nvdVendor Advisory
- support.apple.com/HT207801nvdVendor Advisory
- support.apple.com/HT207804nvdVendor Advisory
News mentions
0No linked articles in our index yet.