vulnerability
Apple Safari security update for CVE-2017-2385
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 2 | (AV:L/AC:L/Au:N/C:P/I:N/A:N) | Mar 28, 2017 | Mar 28, 2017 | Mar 27, 2026 |
Severity
2
CVSS
(AV:L/AC:L/Au:N/C:P/I:N/A:N)
Published
Mar 28, 2017
Added
Mar 28, 2017
Modified
Mar 27, 2026
Description
An issue was discovered in certain Apple products. Safari before 10.1 is affected. The issue involves the "Safari Login AutoFill" component. It allows local users to obtain access to locked keychain items via unspecified vectors.
Solutions
apple-safari-upgrade-10_1apple-safari-windows-uninstall
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.