Mail in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to trigger a refresh operation, and consequently cause a visit to an arbitrary web site, via a crafted HTML e-mail message.
Base Score: 4.3
Impact Score: 2.9
Exploitability Score: 8.6
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:* versions up to 8.3 (inclusive)
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* versions up to 10.10.3 (inclusive)
View all (4 total)