CVE-2017-7161

See a problem?

Source

https://nvd.nist.gov/vuln/detail/CVE-2017-7161

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-7161.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2017-7161

Related

Published

2018-04-03T06:29:02Z

Modified

2024-06-30T12:01:22Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An issue was discovered in certain Apple products. Safari before 11.0.2 is affected. The issue involves the "WebKit Web Inspector" component. It allows remote attackers to execute arbitrary code via special characters that trigger command injection.

References

Affected packages

Debian:11 / webkit2gtk

Package

Name: webkit2gtk
Purl: pkg:deb/debian/webkit2gtk?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.18.6-1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:12 / webkit2gtk

Package

Name: webkit2gtk
Purl: pkg:deb/debian/webkit2gtk?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.18.6-1

Ecosystem specific

{
    "urgency": "unimportant"
}

Debian:13 / webkit2gtk

Package

Name: webkit2gtk
Purl: pkg:deb/debian/webkit2gtk?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.18.6-1

Ecosystem specific

{
    "urgency": "unimportant"
}