An issue was discovered in certain Apple products. iOS before 11 is affected. Safari before 11 is affected. The issue involves the "WebKit" component. It allows remote attackers to track Safari Private Browsing users by leveraging cookie mishandling.
http://www.securityfocus.com/bid/100991
http://www.securitytracker.com/id/1039384
http://www.securitytracker.com/id/1039427
Source: MITRE
Published: 2017-10-23
Updated: 2017-10-26
Type: CWE-275
Base Score: 4.3
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Impact Score: 2.9
Exploitability Score: 8.6
Severity: MEDIUM
Base Score: 4.3
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
Impact Score: 1.4
Exploitability Score: 2.8
Severity: MEDIUM