Main Vulnerability Database Exploits ID:3694 - Exploit for Information disclosure - CVE-2017-2365

ID:3694 - Exploit for Information disclosure - CVE-2017-2365

Published: August 4, 2020

Vulnerability identifier: #VU33477

Vulnerability risk: Medium

CVE-ID: CVE-2017-2365

CWE-ID: CWE-200

Exploitation vector: Remote access

Vulnerable software:

Link to public exploit:

https://www.exploit-db.com/exploits/41453/

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.

Remediation

Install update from vendor's website.

ID:3694 - Exploit for Information disclosure - CVE-2017-2365

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human