exploitDog

CVE-2013-5160

Опубликовано: 28 сент. 2013

Источник: nvd

CVSS2: 3.3

EPSS Низкий

Описание

Passcode Lock in Apple iOS before 7.0.2 on iPhone devices allows physically proximate attackers to bypass an intended passcode requirement, and dial arbitrary telephone numbers, by making a series of taps of the emergency-call button to trigger a NULL pointer dereference.

Ссылки

http://lists.apple.com/archives/security-announce/2013/Sep/msg00009.html
Vendor Advisory
http://support.apple.com/kb/HT5957
Vendor Advisory
http://lists.apple.com/archives/security-announce/2013/Sep/msg00009.html
Vendor Advisory
http://support.apple.com/kb/HT5957
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Версия до 7.0.1 (включая)

cpe:2.3:o:apple:iphone_os:7.0:*:*:*:*:*:*:*

EPSS

Процентиль: 15%

0.00048

Низкий

3.3 Low

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-p6m7-p366-2xc4

github

больше 3 лет назад

Passcode Lock in Apple iOS before 7.0.2 on iPhone devices allows physically proximate attackers to bypass an intended passcode requirement, and dial arbitrary telephone numbers, by making a series of taps of the emergency-call button to trigger a NULL pointer dereference.

EPSS

Процентиль: 15%

0.00048

Низкий

3.3 Low

CVSS2

Дефекты

CWE-264