Vulnerabilities > Apple > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-05-22 | CVE-2017-2509 | Unspecified vulnerability in Apple mac OS X An issue was discovered in certain Apple products. | 5.5 |
| 2017-05-22 | CVE-2017-2508 | Cross-site Scripting vulnerability in Apple Safari An issue was discovered in certain Apple products. | 6.1 |
| 2017-05-22 | CVE-2017-2507 | Information Exposure vulnerability in Apple products An issue was discovered in certain Apple products. | 5.5 |
| 2017-05-22 | CVE-2017-2504 | Cross-site Scripting vulnerability in Apple Iphone OS An issue was discovered in certain Apple products. | 6.1 |
| 2017-05-22 | CVE-2017-2502 | Unspecified vulnerability in Apple products An issue was discovered in certain Apple products. | 5.5 |
| 2017-05-22 | CVE-2017-2500 | Improper Input Validation vulnerability in Apple Safari An issue was discovered in certain Apple products. | 4.7 |
| 2017-05-22 | CVE-2017-2497 | Open Redirect vulnerability in Apple Iphone OS An issue was discovered in certain Apple products. | 6.1 |
| 2017-05-22 | CVE-2017-2495 | Improper Input Validation vulnerability in Apple Iphone OS An issue was discovered in certain Apple products. | 6.5 |
| 2017-04-24 | CVE-2010-1776 | 7PK - Security Features vulnerability in Apple Iphone OS Find My iPhone on iOS 2.0 through 3.1.3 for iPhone 3G and later and iOS 2.1 through 3.1.3 for iPod touch (2nd generation) and later, when Find My iPhone is disabled, allows remote authenticated users with an associated MobileMe account to wipe the device. | 4.8 |
| 2017-04-07 | CVE-2017-2387 | Improper Certificate Validation vulnerability in Apple Music 1.2.1 The Apple Music (aka com.apple.android.music) application before 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | 4.8 |