返回 CVE 浏览器

CVE-2017-8248

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0350%

EPSS Percentile22.66th

Published2017年8月16日

Last Modified2026年5月13日

Vulnerability Description

A buffer overflow may occur in the processing of a downlink NAS message in Qualcomm Telephony as used in Apple iPhone 5 and later, iPad 4th generation and later, iPod touch 6th generation.

Affected Platforms (CPE)

💻

Apple

Iphone Os

<= 10.3.2

References & Advisories

🔗 http://seclists.org/fulldisclosure/2017/Jul/34

🔗 http://www.securityfocus.com/bid/106128

🔗 http://www.securityfocus.com/bid/99891

🔗 http://www.securitytracker.com/id/1038950

🔗 http://seclists.org/fulldisclosure/2017/Jul/34

🔗 http://www.securityfocus.com/bid/106128

🔗 http://www.securityfocus.com/bid/99891

🔗 http://www.securitytracker.com/id/1038950

相关漏洞威胁

CVE-2008-421110.0

Integer signedness error in (1) QuickLook in Apple Mac OS X 10.5.5 and (2) Office Viewer in Apple iPhone OS 1.0 through 2.1 and iP...

CVE-2009-220410.0

Unspecified vulnerability in the CoreTelephony component in Apple iPhone OS before 3.0.1 allows remote attackers to execute arbitr...

CVE-2008-230310.0

Integer signedness error in Safari on Apple iPhone before 2.0 and iPod touch before 2.0 allows remote attackers to execute arbitra...

CVE-2010-111910.0

Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Safari before 4.1 on ...