cvedb.io
CVE-2016-1763
LOW · CVSS 3.5
EPSS exploitation probability: 0%
Published 2016-03-24T01:59:31.797 · Last modified 2026-06-17T00:42:34.817

Summary

Messages in Apple iOS before 9.3 does not ensure that an auto-fill action applies to the intended message thread, which allows remote authenticated users to obtain sensitive information by providing a crafted sms: URL and reading a thread.

Affected products

apple — iphone_os

Does this affect you?

Add your gear to cvedb and we'll alert you only when apple ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.