Описание
A trust issue was addressed by removing a legacy API. This issue is fixed in iOS 14.0 and iPadOS 14.0, tvOS 14.0. An attacker may be able to misuse a trust relationship to download malicious content.
Ссылки
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Release NotesVendor Advisory
- Release NotesVendor Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Release NotesVendor Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 14.0 (исключая)Версия до 14.0 (исключая)Версия до 14.0 (исключая)
Одно из
cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
EPSS
Процентиль: 31%
0.0012
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
CVSS3: 5.5
github
больше 3 лет назад
A trust issue was addressed by removing a legacy API. This issue is fixed in iOS 14.0 and iPadOS 14.0, tvOS 14.0. An attacker may be able to misuse a trust relationship to download malicious content.
EPSS
Процентиль: 31%
0.0012
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
NVD-CWE-Other