WebKit in Apple iOS before 10, iTunes before 12.5.1 on Windows, iCloud before 6.0 on Windows, and Safari before 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site.
2016-09-25T10:59:56.143
2025-04-12T10:46:40.837
Deferred
CVSSv3.0: 8.8 (HIGH)
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.6
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | apple | safari | ≤ 9.1.3 | Yes |
| Operating System | apple | iphone_os | ≤ 9.3.5 | Yes |
| Application | apple | icloud | 5.2.1 | Yes |
| Application | apple | itunes | 12.4.3 | Yes |
| Operating System | microsoft | windows | * | No |