CVE-2017-2439 in tvOSinfo

Summary

An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10.12.4 is affected. tvOS before 10.2 is affected. watchOS before 3.2 is affected. The issue involves the "FontParser" component. It allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and application crash) via a crafted font file.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

12/01/2016

Disclosure

04/01/2017

Moderation

VulDB entry created

Entries

4: VDB-98857

CPE

ready

CWE

CWE-125 (Confirmed)

CVSS

7.1

EPSS

0.00614

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-2439
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-2439
CVE Details	https://www.cvedetails.com/cve/CVE-2017-2439/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!