CVE-2017-7161

An issue was discovered in certain Apple products. Safari before 11.0.2 is affected. The issue involves the "WebKit Web Inspector" component. It allows remote attackers to execute arbitrary code via special characters that trigger command injection.

Published : 2018-04-03 06:29 Updated : 2019-10-03 00:03

6.8
CVSS Score More info
Score 6.8 / 10
6.8
Vendor Product Version URI
Apple Safari 6.2.1 cpe:/a:apple:safari:6.2.1
Apple Safari 6.2.8 cpe:/a:apple:safari:6.2.8
Apple Safari 7.1.1 cpe:/a:apple:safari:7.1.1
Apple Safari 7.1.8 cpe:/a:apple:safari:7.1.8
Apple Safari 8.0.1 cpe:/a:apple:safari:8.0.1
Apple Safari 10.0.0 cpe:/a:apple:safari:10.0.0
Apple Safari - cpe:/a:apple:safari:-
Apple Safari 1.0 cpe:/a:apple:safari:1.0
Apple Safari 1.0 cpe:/a:apple:safari:1.0:beta
Apple Safari 1.0 cpe:/a:apple:safari:1.0:beta2
Apple Safari 1.0.0 cpe:/a:apple:safari:1.0.0
Apple Safari 1.0.0b1 cpe:/a:apple:safari:1.0.0b1
Apple Safari 1.0.0b2 cpe:/a:apple:safari:1.0.0b2
Apple Safari 1.0.1 cpe:/a:apple:safari:1.0.1
Apple Safari 1.0.2 cpe:/a:apple:safari:1.0.2
Apple Safari 1.0.3 cpe:/a:apple:safari:1.0.3
Apple Safari 1.0.3 cpe:/a:apple:safari:1.0.3:85.8
Apple Safari 1.0.3 cpe:/a:apple:safari:1.0.3:85.8.1
Apple Safari 1.0b1 cpe:/a:apple:safari:1.0b1:-:mac
Apple Safari 1.1 cpe:/a:apple:safari:1.1
Apple Safari 1.1.0 cpe:/a:apple:safari:1.1.0
Apple Safari 1.1.1 cpe:/a:apple:safari:1.1.1
Apple Safari 1.2 cpe:/a:apple:safari:1.2
Apple Safari 1.2.0 cpe:/a:apple:safari:1.2.0
Apple Safari 1.2.1 cpe:/a:apple:safari:1.2.1
Apple Safari 1.2.2 cpe:/a:apple:safari:1.2.2
Apple Safari 1.2.3 cpe:/a:apple:safari:1.2.3
Apple Safari 1.2.4 cpe:/a:apple:safari:1.2.4
Apple Safari 1.2.5 cpe:/a:apple:safari:1.2.5
Apple Safari 1.3 cpe:/a:apple:safari:1.3
Apple Safari 1.3.0 cpe:/a:apple:safari:1.3.0
Apple Safari 1.3.1 cpe:/a:apple:safari:1.3.1
Apple Safari 1.3.2 cpe:/a:apple:safari:1.3.2
Apple Safari 1.3.2 cpe:/a:apple:safari:1.3.2:312.5
Apple Safari 1.3.2 cpe:/a:apple:safari:1.3.2:312.6
Apple Safari 2 cpe:/a:apple:safari:2
Apple Safari 2.0 cpe:/a:apple:safari:2.0
Apple Safari 2.0.0 cpe:/a:apple:safari:2.0.0
Apple Safari 2.0.1 cpe:/a:apple:safari:2.0.1
Apple Safari 2.0.2 cpe:/a:apple:safari:2.0.2
Apple Safari 2.0.3 cpe:/a:apple:safari:2.0.3
Apple Safari 2.0.3 cpe:/a:apple:safari:2.0.3:417.8
Apple Safari 2.0.3 cpe:/a:apple:safari:2.0.3:417.9
Apple Safari 2.0.3 cpe:/a:apple:safari:2.0.3:417.9.2
Apple Safari 2.0.3 cpe:/a:apple:safari:2.0.3:417.9.3
Apple Safari 2.0.4 cpe:/a:apple:safari:2.0.4
Apple Safari 2.0.4 cpe:/a:apple:safari:2.0.4:-:mac
Apple Safari 3 cpe:/a:apple:safari:3
Apple Safari 3.0 cpe:/a:apple:safari:3.0
Apple Safari 3.0.0 cpe:/a:apple:safari:3.0.0
Apple Safari 3.0.0 cpe:/a:apple:safari:3.0.0:-:mac
Apple Safari 3.0.0b cpe:/a:apple:safari:3.0.0b
Apple Safari 3.0.0b cpe:/a:apple:safari:3.0.0b:-:windows
Apple Safari 3.0.1 cpe:/a:apple:safari:3.0.1
Apple Safari 3.0.1 cpe:/a:apple:safari:3.0.1:-:mac
Apple Safari 3.0.1 cpe:/a:apple:safari:3.0.1:beta
Apple Safari 3.0.1b cpe:/a:apple:safari:3.0.1b
Apple Safari 3.0.1b cpe:/a:apple:safari:3.0.1b:-:windows
Apple Safari 3.0.2 cpe:/a:apple:safari:3.0.2
Apple Safari 3.0.2 cpe:/a:apple:safari:3.0.2:-:mac
Apple Safari 3.0.2b cpe:/a:apple:safari:3.0.2b
Apple Safari 3.0.2b cpe:/a:apple:safari:3.0.2b:-:windows
Apple Safari 3.0.3 cpe:/a:apple:safari:3.0.3
Apple Safari 3.0.3 cpe:/a:apple:safari:3.0.3:-:mac
Apple Safari 3.0.3b cpe:/a:apple:safari:3.0.3b
Apple Safari 3.0.3b cpe:/a:apple:safari:3.0.3b:-:windows
Apple Safari 3.0.4 cpe:/a:apple:safari:3.0.4
Apple Safari 3.0.4 cpe:/a:apple:safari:3.0.4:-:mac
Apple Safari 3.0.4b cpe:/a:apple:safari:3.0.4b
Apple Safari 3.0.4b cpe:/a:apple:safari:3.0.4b:-:windows
Apple Safari 3.1.0 cpe:/a:apple:safari:3.1.0
Apple Safari 3.1.0 cpe:/a:apple:safari:3.1.0:-:mac
Apple Safari 3.1.0b cpe:/a:apple:safari:3.1.0b
Apple Safari 3.1.0b cpe:/a:apple:safari:3.1.0b:-:windows
Apple Safari 3.1.1 cpe:/a:apple:safari:3.1.1
Apple Safari 3.1.1b cpe:/a:apple:safari:3.1.1b:-:windows
Apple Safari 3.1.2 cpe:/a:apple:safari:3.1.2
Apple Safari 3.1.2b cpe:/a:apple:safari:3.1.2b:-:windows
Apple Safari 3.2.0 cpe:/a:apple:safari:3.2.0
Apple Safari 3.2.0b cpe:/a:apple:safari:3.2.0b:-:windows
Apple Safari 3.2.1 cpe:/a:apple:safari:3.2.1
Apple Safari 3.2.1b cpe:/a:apple:safari:3.2.1b:-:windows
Apple Safari 3.2.2 cpe:/a:apple:safari:3.2.2
Apple Safari 3.2.2b cpe:/a:apple:safari:3.2.2b:-:windows
Apple Safari 4.0 cpe:/a:apple:safari:4.0
Apple Safari 4.0 cpe:/a:apple:safari:4.0:beta
Apple Safari 4.0.0b cpe:/a:apple:safari:4.0.0b
Apple Safari 4.0.1 cpe:/a:apple:safari:4.0.1
Apple Safari 4.0.2 cpe:/a:apple:safari:4.0.2
Apple Safari 4.0.3 cpe:/a:apple:safari:4.0.3
Apple Safari 4.0.4 cpe:/a:apple:safari:4.0.4
Apple Safari 4.0.5 cpe:/a:apple:safari:4.0.5
Apple Safari 4.1 cpe:/a:apple:safari:4.1
Apple Safari 4.1.1 cpe:/a:apple:safari:4.1.1
Apple Safari 4.1.2 cpe:/a:apple:safari:4.1.2
Apple Safari 5.0 cpe:/a:apple:safari:5.0
Apple Safari 5.0.1 cpe:/a:apple:safari:5.0.1
Apple Safari 5.0.2 cpe:/a:apple:safari:5.0.2
Apple Safari 5.0.4 cpe:/a:apple:safari:5.0.4
Apple Safari 5.0.5 cpe:/a:apple:safari:5.0.5
Apple Safari 5.0.6 cpe:/a:apple:safari:5.0.6
Apple Safari 5.1 cpe:/a:apple:safari:5.1
Apple Safari 5.1.1 cpe:/a:apple:safari:5.1.1
Apple Safari 5.1.2 cpe:/a:apple:safari:5.1.2
Apple Safari 5.1.3 cpe:/a:apple:safari:5.1.3
Apple Safari 5.1.4 cpe:/a:apple:safari:5.1.4
Apple Safari 5.1.5 cpe:/a:apple:safari:5.1.5
Apple Safari 5.1.6 cpe:/a:apple:safari:5.1.6
Apple Safari 5.1.7 cpe:/a:apple:safari:5.1.7
Apple Safari 6.0 cpe:/a:apple:safari:6.0
Apple Safari 6.0.1 cpe:/a:apple:safari:6.0.1
Apple Safari 6.0.2 cpe:/a:apple:safari:6.0.2
Apple Safari 6.0.3 cpe:/a:apple:safari:6.0.3
Apple Safari 6.0.4 cpe:/a:apple:safari:6.0.4
Apple Safari 6.0.5 cpe:/a:apple:safari:6.0.5
Apple Safari 6.1 cpe:/a:apple:safari:6.1
Apple Safari 6.1.1 cpe:/a:apple:safari:6.1.1
Apple Safari 6.1.2 cpe:/a:apple:safari:6.1.2
Apple Safari 6.1.3 cpe:/a:apple:safari:6.1.3
Apple Safari 6.1.4 cpe:/a:apple:safari:6.1.4
Apple Safari 6.1.5 cpe:/a:apple:safari:6.1.5
Apple Safari 6.2.4 cpe:/a:apple:safari:6.2.4
Apple Safari 6.2.5 cpe:/a:apple:safari:6.2.5
Apple Safari 6.2.6 cpe:/a:apple:safari:6.2.6
Apple Safari 7.0 cpe:/a:apple:safari:7.0
Apple Safari 7.0.1 cpe:/a:apple:safari:7.0.1
Apple Safari 7.0.2 cpe:/a:apple:safari:7.0.2
Apple Safari 7.0.3 cpe:/a:apple:safari:7.0.3
Apple Safari 7.0.4 cpe:/a:apple:safari:7.0.4
Apple Safari 7.0.5 cpe:/a:apple:safari:7.0.5
Apple Safari 7.1 cpe:/a:apple:safari:7.1
Apple Safari 7.1.4 cpe:/a:apple:safari:7.1.4
Apple Safari 7.1.5 cpe:/a:apple:safari:7.1.5
Apple Safari 7.1.6 cpe:/a:apple:safari:7.1.6
Apple Safari 8.0 cpe:/a:apple:safari:8.0
Apple Safari 8.0.4 cpe:/a:apple:safari:8.0.4
Apple Safari 8.0.5 cpe:/a:apple:safari:8.0.5
Apple Safari 8.0.6 cpe:/a:apple:safari:8.0.6
Apple Safari 8.0.8 cpe:/a:apple:safari:8.0.8
Apple Safari 9.0.1 cpe:/a:apple:safari:9.0.1
Apple Safari 9.0.2 cpe:/a:apple:safari:9.0.2
Apple Safari 9.0.3 cpe:/a:apple:safari:9.0.3
Apple Safari 9.1 cpe:/a:apple:safari:9.1
Apple Safari 9.1.1 cpe:/a:apple:safari:9.1.1
Apple Safari 9.1.3 cpe:/a:apple:safari:9.1.3
Apple Safari 10.0.3 cpe:/a:apple:safari:10.0.3
Apple Safari 10.1 cpe:/a:apple:safari:10.1
Apple Safari 10.1.1 cpe:/a:apple:safari:10.1.1
Apple Safari 10.1.2 cpe:/a:apple:safari:10.1.2
Apple Safari 11.0 cpe:/a:apple:safari:11.0
Apple Safari 11.0.1 cpe:/a:apple:safari:11.0.1
Canonical Ubuntu Linux 16.04 cpe:/o:canonical:ubuntu_linux:16.04::~~lts~~~
Canonical Ubuntu Linux 17.10 cpe:/o:canonical:ubuntu_linux:17.10
  1. Canonical (1) Search CVE
    1. Ubuntu Linux (2) Search CVE
      1. 16.04
      2. 17.10
  2. Apple (1) Search CVE
    1. Safari (126) Search CVE
      1. 6.2.1
      2. 6.2.8
      3. 7.1.1
      4. 7.1.8
      5. 8.0.1
      6. 10.0.0
      7. -
      8. 1.0
      9. 1.0.0
      10. 1.0.0b1
      11. 1.0.0b2
      12. 1.0.1
      13. 1.0.2
      14. 1.0.3
      15. 1.0b1
      16. 1.1
      17. 1.1.0
      18. 1.1.1
      19. 1.2
      20. 1.2.0
      21. 1.2.1
      22. 1.2.2
      23. 1.2.3
      24. 1.2.4
      25. 1.2.5
      26. 1.3
      27. 1.3.0
      28. 1.3.1
      29. 1.3.2
      30. 2
      31. 2.0
      32. 2.0.0
      33. 2.0.1
      34. 2.0.2
      35. 2.0.3
      36. 2.0.4
      37. 3
      38. 3.0
      39. 3.0.0
      40. 3.0.0b
      41. 3.0.1
      42. 3.0.1b
      43. 3.0.2
      44. 3.0.2b
      45. 3.0.3
      46. 3.0.3b
      47. 3.0.4
      48. 3.0.4b
      49. 3.1.0
      50. 3.1.0b
      51. 3.1.1
      52. 3.1.1b
      53. 3.1.2
      54. 3.1.2b
      55. 3.2.0
      56. 3.2.0b
      57. 3.2.1
      58. 3.2.1b
      59. 3.2.2
      60. 3.2.2b
      61. 4.0
      62. 4.0.0b
      63. 4.0.1
      64. 4.0.2
      65. 4.0.3
      66. 4.0.4
      67. 4.0.5
      68. 4.1
      69. 4.1.1
      70. 4.1.2
      71. 5.0
      72. 5.0.1
      73. 5.0.2
      74. 5.0.4
      75. 5.0.5
      76. 5.0.6
      77. 5.1
      78. 5.1.1
      79. 5.1.2
      80. 5.1.3
      81. 5.1.4
      82. 5.1.5
      83. 5.1.6
      84. 5.1.7
      85. 6.0
      86. 6.0.1
      87. 6.0.2
      88. 6.0.3
      89. 6.0.4
      90. 6.0.5
      91. 6.1
      92. 6.1.1
      93. 6.1.2
      94. 6.1.3
      95. 6.1.4
      96. 6.1.5
      97. 6.2.4
      98. 6.2.5
      99. 6.2.6
      100. 7.0
      101. 7.0.1
      102. 7.0.2
      103. 7.0.3
      104. 7.0.4
      105. 7.0.5
      106. 7.1
      107. 7.1.4
      108. 7.1.5
      109. 7.1.6
      110. 8.0
      111. 8.0.4
      112. 8.0.5
      113. 8.0.6
      114. 8.0.8
      115. 9.0.1
      116. 9.0.2
      117. 9.0.3
      118. 9.1
      119. 9.1.1
      120. 9.1.3
      121. 10.0.3
      122. 10.1
      123. 10.1.1
      124. 10.1.2
      125. 11.0
      126. 11.0.1

CWE

ID Name Description Links
CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection') The software constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component. CVE

History of changes

Date Event
2019-10-03 00:03
2018-05-04 15:09
2018-04-04 01:29
2018-04-03 06:29

New CVE