Medium severity5.3NVD Advisory· Published Oct 23, 2017· Updated May 13, 2026

CVE-2017-7147

Description

An issue was discovered in certain Apple products. The Apple Support app before 1.2 for iOS is affected. The issue involves the "Analytics" component. It allows remote attackers to obtain sensitive analytics information by leveraging its presence in a cleartext HTTP transmission to an Adobe Marketing Cloud server operated for Apple, as demonstrated by information about the installation date and time.

Affected products

Apple Inc./Apple Support
cpe:2.3:a:apple:apple_support:*:*:*:*:*:*:*:*
Range: <=1.1.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/101533nvdThird Party AdvisoryVDB Entry
support.apple.com/HT208201nvdVendor Advisory
www.info-sec.ca/advisories/Apple-Support.htmlnvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.345
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000