exploitDog

CVE-2013-5161

Опубликовано: 28 сент. 2013

Источник: nvd

CVSS2: 4.4

EPSS Низкий

Описание

Passcode Lock in Apple iOS before 7.0.2 does not properly manage the lock state, which allows physically proximate attackers to bypass an intended passcode requirement, and open the Camera app or read the list of all recently opened apps, by leveraging unspecified transition errors.

Ссылки

http://lists.apple.com/archives/security-announce/2013/Sep/msg00009.html
Vendor Advisory
http://support.apple.com/kb/HT5957
Vendor Advisory
http://lists.apple.com/archives/security-announce/2013/Sep/msg00009.html
Vendor Advisory
http://support.apple.com/kb/HT5957
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Версия до 7.0.1 (включая)

cpe:2.3:o:apple:iphone_os:7.0:*:*:*:*:*:*:*

EPSS

Процентиль: 16%

0.00052

Низкий

4.4 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-mg2j-64fv-pq52

github

больше 3 лет назад

Passcode Lock in Apple iOS before 7.0.2 does not properly manage the lock state, which allows physically proximate attackers to bypass an intended passcode requirement, and open the Camera app or read the list of all recently opened apps, by leveraging unspecified transition errors.

EPSS

Процентиль: 16%

0.00052

Низкий

4.4 Medium

CVSS2

Дефекты

CWE-264