CVE-2017-2520 in macOSinfo

Summary

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow and application crash) via a crafted SQL statement.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

12/01/2016

Disclosure

05/22/2017

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
101386	Apple macOS SQLite memory corruption	119	Not defined	Official fix	CVE-2017-2520
101326	Apple watchOS SQLite memory corruption	119	Not defined	Official fix	CVE-2017-2520
101303	Apple tvOS SQLite memory corruption	119	Not defined	Official fix	CVE-2017-2520
101267	Apple iOS SQLite memory corruption	119	Not defined	Official fix	CVE-2017-2520

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

◂ PreviousOverviewNext ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!