System	Score	Found at
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
epss	0.18057	https://api.first.org/data/v1/epss?cve=CVE-2017-2364
cvssv2	4.3	https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
archlinux	Critical	https://security.archlinux.org/AVG-170

Reference id	Reference type	URL
		https://api.first.org/data/v1/epss?cve=CVE-2017-2364
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2364
		https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
ASA-201702-9		https://security.archlinux.org/ASA-201702-9
AVG-170		https://security.archlinux.org/AVG-170
CVE-2017-2364	Exploit	https://bugs.chromium.org/p/project-zero/issues/detail?id=1056
CVE-2017-2364	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/41799.html
USN-3200-1		https://usn.ubuntu.com/3200-1/
USN-3257-1		https://usn.ubuntu.com/3257-1/

Data source	Exploit-DB
Date added	April 4, 2017
Description	Apple WebKit 10.0.2(12602.3.12.0.1) - 'Frame::setDocument (1)' Universal Cross-Site Scripting
Ransomware campaign use	Known
Source publication date	April 4, 2017
Exploit type	webapps
Platform	multiple
Source update date	April 4, 2017
Source URL	https://bugs.chromium.org/p/project-zero/issues/detail?id=1056

Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Percentile	0.94896
EPSS Score	0.18057
Published At	Aug. 6, 2025, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2025-07-31T08:39:02.100070+00:00	Ubuntu USN Importer	Import	https://usn.ubuntu.com/3257-1/	37.0.0