1. Home
  2. CVE Database
  3. CVE-2017-7151
HIGH · 7.0

CVE-2017-7151

A race condition was addressed with additional validation. This issue affected versions prior to iOS 11.2, macOS High Sierra 10.13.2, tvOS 11.2, watchOS 4.2, iTunes 12.7.2 for Windows, macOS High Sier...

Vulnerability Description

A race condition was addressed with additional validation. This issue affected versions prior to iOS 11.2, macOS High Sierra 10.13.2, tvOS 11.2, watchOS 4.2, iTunes 12.7.2 for Windows, macOS High Sierra 10.13.4.

CVSS Score

7.0

HIGH

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
AppleIphone Os< 11.2
AppleMac Os X< 10.13.2
AppleTvos< 11.2
AppleWatchos< 4.2
AppleItunes< 12.7.2
MicrosoftWindows-

Related Weaknesses (CWE)

CWE-362

References

FAQ

What is CVE-2017-7151?

CVE-2017-7151 is a vulnerability with a CVSS score of 7.0 (HIGH). A race condition was addressed with additional validation. This issue affected versions prior to iOS 11.2, macOS High Sierra 10.13.2, tvOS 11.2, watchOS 4.2, iTunes 12.7.2 for Windows, macOS High Sier...

How severe is CVE-2017-7151?

CVE-2017-7151 has been rated HIGH with a CVSS base score of 7.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-7151?

Check the references section above for vendor advisories and patch information. Affected products include: Apple Iphone Os, Apple Mac Os X, Apple Tvos, Apple Watchos, Apple Itunes.