Описание
NSXMLParser in Foundation in Apple iOS before 8 allows attackers to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
NSXMLParser in Foundation in Apple iOS before 8 allows attackers to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2014-4374
- https://exchange.xforce.ibmcloud.com/vulnerabilities/96077
- http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html
- http://support.apple.com/kb/HT6441
- http://support.apple.com/kb/HT6443
- http://www.securityfocus.com/bid/69882
- http://www.securityfocus.com/bid/69905
- http://www.securitytracker.com/id/1030866
EPSS
Процентиль: 65%
0.00502
Низкий
CVE ID
Связанные уязвимости
nvd
больше 11 лет назад
NSXMLParser in Foundation in Apple iOS before 8 allows attackers to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
EPSS
Процентиль: 65%
0.00502
Низкий