CVE-2015-7032

Опубликовано: 18 окт. 2015

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

The Apple iWork application before 2.6 for iOS, Apple Keynote before 6.6, Apple Pages before 5.6, and Apple Numbers before 3.6 allow remote attackers to obtain sensitive information via a crafted document.

Ссылки

http://lists.apple.com/archives/security-announce/2015/Oct/msg00000.html
Vendor Advisory
http://www.securitytracker.com/id/1033823
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1033825
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1033826
Third Party Advisory
VDB Entry
https://support.apple.com/HT205373
Vendor Advisory
http://lists.apple.com/archives/security-announce/2015/Oct/msg00000.html
Vendor Advisory
http://www.securitytracker.com/id/1033823
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1033825
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1033826
Third Party Advisory
VDB Entry
https://support.apple.com/HT205373
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:apple:numbers:*:*:*:*:*:*:*:*

Версия до 3.5 (включая)

Конфигурация 2

cpe:2.3:a:apple:iwork:*:*:*:*:*:*:*:*

Версия до 2.5.4 (включая)

Конфигурация 3

cpe:2.3:a:apple:pages:*:*:*:*:*:*:*:*

Версия до 5.5.3 (включая)

Конфигурация 4

cpe:2.3:a:apple:keynote:*:*:*:*:*:*:*:*

Версия до 6.5 (включая)

EPSS

Процентиль: 72%

0.00713

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-5wxw-67wh-rggh

github

больше 3 лет назад