Lucene search
HistoryOct 03, 2022 - 4:14 p.m.
CVE-2013-5164
ios
race conditions
security vulnerability
apple
nvd
cve-2013-5164
3.3 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:P/A:N
6.1 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
12.8%
Multiple race conditions in the Phone app in Apple iOS before 7.0.3 allow physically proximate attackers to bypass the locked state, and dial the telephone numbers in arbitrary Contacts entries, by visiting the Contacts pane.
Affected configurations
Node
appleiphone_osRange≤7.0.2
ORappleiphone_osMatch7.0
ORappleiphone_osMatch7.0.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| apple:iphone_os | apple iphone os | le | 7.0.2 |
| apple:iphone_os | apple iphone os | eq | 7.0 |
| apple:iphone_os | apple iphone os | eq | 7.0.1 |
Related
nvd
nvd
CVE-2013-5164
2013-10-24 03:48:48
prion
prion
Race condition
2013-10-24 03:48:00
cvelist
cvelist
CVE-2013-5164
2022-10-03 16:14:54
nessus
nessus
Apple iOS 7.x < 7.0.3 Multiple Vulnerabilities
2011-11-28 00:00:00
3.3 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:M/Au:N/C:P/I:P/A:N
6.1 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
12.8%
Related for CVE-2013-5164