Описание
Heap-based buffer overflow in IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted key-mapping properties.
Ссылки
- Broken Link
- Broken Link
- Broken Link
- Mailing ListVendor Advisory
- Vendor Advisory
- Vendor Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- Vendor Advisory
- Broken Link
- Broken Link
- Broken Link
- Mailing ListVendor Advisory
- Vendor Advisory
- Vendor Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 8.0 (исключая)Версия до 10.10.0 (исключая)Версия от 10.10.1 (включая) до 10.10.3 (исключая)Версия до 7.0 (исключая)
Одно из
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
EPSS
Процентиль: 98%
0.61995
Средний
7.8 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-787
CWE-787
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
Heap-based buffer overflow in IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitrary code in a privileged context via an application that provides crafted key-mapping properties.
EPSS
Процентиль: 98%
0.61995
Средний
7.8 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-787
CWE-787