An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. The issue involves the "Safari Reader" component, which allows remote attackers to conduct UXSS attacks via a crafted web site.
References
Information
Published : 2017-02-20 00:59
Updated : 2017-07-26 18:29
NVD link : CVE-2016-7650
Mitre link : CVE-2016-7650
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
apple
- iphone_os
- safari