Medium severity6.1NVD Advisory· Published Oct 23, 2017· Updated Jun 17, 2026
CVE-2017-7109
CVE-2017-7109
Description
An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. iCloud before 7.0 on Windows is affected. iTunes before 12.7 on Windows is affected. tvOS before 11 is affected. The issue involves the "WebKit" component. A cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via crafted web content that incorrectly interacts with the Application Cache policy.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
16- osv-coords11 versionspkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20Raspberry%20Pi%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP3pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP2pkg:rpm/suse/webkit2gtk3&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP3
< 2.18.5-2.18.1+ 10 more
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
- (no CPE)range: < 2.18.5-2.18.1
Patches
Vulnerability mechanics
References
8- www.securityfocus.com/bid/101005nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1039384nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1039428nvdThird Party AdvisoryVDB Entry
- support.apple.com/HT208112nvdVendor Advisory
- support.apple.com/HT208113nvdVendor Advisory
- support.apple.com/HT208116nvdVendor Advisory
- support.apple.com/HT208141nvdVendor Advisory
- support.apple.com/HT208142nvdVendor Advisory
News mentions
0No linked articles in our index yet.