An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari before 10.0.2 is affected. The issue involves the "Safari Reader" component, which allows remote attackers to conduct UXSS attacks via a crafted web site.
http://www.securityfocus.com/bid/94915
http://www.securitytracker.com/id/1037459
Source: MITRE
Published: 2017-02-20
Updated: 2017-07-27
Type: CWE-79
Base Score: 2.6
Vector: AV:N/AC:H/Au:N/C:N/I:P/A:N
Impact Score: 2.9
Exploitability Score: 4.9
Severity: LOW
Base Score: 4.7
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N
Impact Score: 2.7
Exploitability Score: 1.6
Severity: MEDIUM