Medium severity5.3NVD Advisory· Published Jul 20, 2017· Updated Jun 17, 2026
CVE-2017-7006
CVE-2017-7006
Description
An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari before 10.1.2 is affected. tvOS before 10.2.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to conduct a timing side-channel attack to bypass the Same Origin Policy and obtain sensitive information via a crafted web site that uses SVG filters.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
16- cpe:2.3:a:apple:webkit:-:*:*:*:*:*:*:*
- osv-coords12 versionspkg:rpm/opensuse/gtk3&distro=openSUSE%20Tumbleweedpkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20Raspberry%20Pi%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP3
< 2.32.4-1.1+ 11 more
- (no CPE)range: < 2.32.4-1.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
Patches
Vulnerability mechanics
References
6- www.securityfocus.com/bid/99886nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1038950nvdThird Party AdvisoryVDB Entry
- security.gentoo.org/glsa/201710-14nvdThird Party Advisory
- support.apple.com/HT207921nvdVendor Advisory
- support.apple.com/HT207923nvdVendor Advisory
- support.apple.com/HT207924nvdVendor Advisory
News mentions
0No linked articles in our index yet.