exploitDog

CVE-2017-13844

Опубликовано: 13 нояб. 2017

Источник: nvd

CVSS3: 2.4

CVSS2: 2.1

EPSS Низкий

Описание

An issue was discovered in certain Apple products. iOS before 11.1 is affected. The issue involves the "Messages" component. It allows physically proximate attackers to view arbitrary photos via a Reply With Message action in the lock-screen state.

Ссылки

http://www.securityfocus.com/bid/102099
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1039703
Third Party Advisory
VDB Entry
https://support.apple.com/HT208222
Vendor Advisory
http://www.securityfocus.com/bid/102099
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1039703
Third Party Advisory
VDB Entry
https://support.apple.com/HT208222
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Версия до 11.1 (исключая)

EPSS

Процентиль: 35%

0.00142

Низкий

2.4 Low

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-q8mj-f7wj-v66h

CVSS3: 2.4

github

больше 3 лет назад

An issue was discovered in certain Apple products. iOS before 11.1 is affected. The issue involves the "Messages" component. It allows physically proximate attackers to view arbitrary photos via a Reply With Message action in the lock-screen state.

EPSS

Процентиль: 35%

0.00142

Низкий

2.4 Low

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-200