CVE•Published 2017-02-20•Modified 2026-05-13•1 article on news•6 live references•NVD data
CVE-2017-2369Apple · Iphone_os
Vulnerability data via NVD (ingested)
CVSS v3.1
8.8
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS percentile
—
Description
An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.
Timeline
Published 2017-02-20
Modified 2026-05-13
External references
Search for exposed instances
Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).
Shodan · vuln tag0 hosts
vuln:CVE-2017-2369Hosts Shodan has explicitly fingerprinted as vulnerable.
Shodan · OS
os:"Iphone Os"Hosts Shodan identified as running Iphone Os.
More intel sources (5)
Shodan report
vuln:CVE-2017-2369Country / ASN / product breakdown for the vuln query.
Censys
vulnerabilities.cve_id: CVE-2017-2369Censys host search filtered to this CVE id.
grep.app
CVE-2017-2369Public source-code mentions — fast PoC discovery.
GitHub code
CVE-2017-2369GitHub code search for direct mentions.
Google dork
"CVE-2017-2369" exploit -site:nvd.nist.govWrite-ups and news, NVD excluded.
Known PoCs on GitHub (7)
CVE-2017-23697 repos
googleprojectzero/domatoPython
DOM fuzzer
trustedsec/spoonmapPython
lhai36366/lhai36366unknown
WPF Partial Trust Security Article 10 minutes to read In general, Internet applications should be restricted from having direct access to critical system resources, to prevent mali…
hiifong/starListPython
Export your star's repository list
sunlei/awesome-starsPython
My GitHub stars.
Ateebshaikh21/red-team-aiPython
Autonomous Red Team AI - Nmap + CVE + LLM Pipeline | ~60% recon time reduction | Tested on DVWA, Metasploitable2, HackTheBox
slient2009/DistanceMeasurementC
source code of paper An Empirical Study on the Distance Metric in Guiding Directed Grey-box Fuzzing (ISSRE24)