VYPR

Messages

by Apple Inc.

CVEs (3)

  • CVE-2016-1764MedMar 24, 2016
    risk 0.28cvss 4.3epss 0.03

    The Content Security Policy (CSP) implementation in Messages in Apple OS X before 10.11.4 allows remote attackers to obtain sensitive information via a javascript: URL.

  • CVE-2017-13844LowNov 13, 2017
    risk 0.16cvss 2.4epss 0.00

    An issue was discovered in certain Apple products. iOS before 11.1 is affected. The issue involves the "Messages" component. It allows physically proximate attackers to view arbitrary photos via a Reply With Message action in the lock-screen state.

  • CVE-2013-0970Mar 15, 2013
    risk 0.00cvss epss 0.01

    Messages in Apple Mac OS X before 10.8.3 allows remote attackers to bypass the FaceTime call-confirmation prompt via a crafted FaceTime: URL.