Lucene search

[email protected]CVE-2010-4012

HistoryOct 03, 2022 - 4:21 p.m.

CVE-2010-4012

2022-10-0316:21:04

CWE-362

[email protected]

web.nvd.nist.gov

cve-2010-4012

apple ios

iphone

passcode lock

security vulnerability

bypass

race condition

nvd

6.2 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

5.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

12.8%

JSON

Race condition in Apple iOS 4.0 through 4.1 for iPhone 3G and later allows physically proximate attackers to bypass the passcode lock by making a call from the Emergency Call screen, then quickly pressing the Sleep/Wake button.

Affected configurations

NVD

Node

appleiphone_osMatch4.0

appleiphone_osMatch4.1

CPENameOperatorVersion
apple:iphone_osapple iphone oseq4.0
apple:iphone_osapple iphone oseq4.1

CPE	Name	Operator	Version
apple:iphone_os	apple iphone os	eq	4.0
apple:iphone_os	apple iphone os	eq	4.1

References

support.apple.com/kb/HT4456

6.2 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

5.9 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

12.8%

JSON

Related for CVE-2010-4012

prion1 nvd1 cvelist1