First published: Mon Mar 27 2017(Updated: )
CoreGraphics. Multiple memory corruption issues were addressed through improved input validation.
Credit: Mei Wang 360 GearTeam product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple iOS and iPadOS | <10.3 | 10.3 |
Safari | <=10.0.3 | |
iPhone OS | <=10.2.1 | |
tvOS | <=10.1.1 | |
Apple iOS, iPadOS, and watchOS | <=3.1.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
(Found alongside the following vulnerabilities)
CVE-2017-2444 has been classified as a high-severity vulnerability due to the potential for memory corruption leading to arbitrary code execution.
To fix CVE-2017-2444, update your affected Apple devices to iOS 10.3, Safari 10.1, tvOS 10.2, or watchOS 3.2 or later.
CVE-2017-2444 affects iOS versions before 10.3, Safari before 10.1, tvOS before 10.2, and watchOS before 3.2.
Yes, CVE-2017-2444 can be exploited remotely through malicious web content in Safari.
Exploitation of CVE-2017-2444 may lead to unexpected application behavior, crashes, or unauthorized access to sensitive data.