VIR Vulnerability Intelligence Relay

CVE-2017-7130

critical
Published 2017-10-23 · Modified 2026-05-13
CVSS v3
9.8
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS v2
7.5
VIR risk
9.8

Description

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the third-party "SQLite" product. Versions before 3.19.3 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.

Predictions

Exploit likelihood
97%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: product-security@apple.com — https://support.apple.com/HT208144

vendor Authored 2026-05-27

Vendor advisory: product-security@apple.com — https://support.apple.com/HT208115

vendor Authored 2026-05-27

Vendor advisory: product-security@apple.com — https://support.apple.com/HT208113

vendor Authored 2026-05-27

Vendor advisory: product-security@apple.com — https://support.apple.com/HT208112

OS impact
OSVersionStatusFixed in
macos macosaffected

References

CWEs

CWE-119

Verify integrity in audit chain (admin only). AS-IS.