CVE-2017-6989 in watchOSinfo

Summary

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "AVEVideoEncoder" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

03/17/2017

Disclosure

05/22/2017

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
101318	Apple watchOS AVEVideoEncoder memory corruption	119	Proof-of-Concept	Official fix	CVE-2017-6989
101295	Apple tvOS AVEVideoEncoder memory corruption	119	Proof-of-Concept	Official fix	CVE-2017-6989
101254	Apple iOS AVEVideoEncoder memory corruption	119	Proof-of-Concept	Official fix	CVE-2017-6989

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

◂ PreviousOverviewNext ▸

Want to know what is going to be exploited?

We predict KEV entries!