Lucene search
HistoryMar 14, 2014 - 10:55 a.m.
CVE-2014-1285
apple
ios
7.1
springboard
cve-2014-1285
access restriction
bypass
application crash
security vulnerability
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
5.7 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
31.0%
Springboard in Apple iOS before 7.1 allows physically proximate attackers to bypass intended access restrictions and read the home screen by leveraging an application crash during activation of an unactivated device.
Affected configurations
Node
appleiphone_osRangeβ€7.0.6
ORappleiphone_osMatch7.0
ORappleiphone_osMatch7.0.1
ORappleiphone_osMatch7.0.2
ORappleiphone_osMatch7.0.3
ORappleiphone_osMatch7.0.4
ORappleiphone_osMatch7.0.5
References
Related
prion
prion
Design/Logic Flaw
2014-03-14 10:55:00
cvelist
cvelist
CVE-2014-1285
2014-03-14 10:00:00
nvd
nvd
CVE-2014-1285
2014-03-14 10:55:06
seebug
seebug
Apple iOS ε€δΈͺε
εη ΄εζΌζ΄
2014-03-13 00:00:00
securityvulns
securityvulns
APPLE-SA-2014-03-10-1 iOS 7.1
2014-03-13 00:00:00
Apple iOS multiple security vulnerabilities
2014-03-31 00:00:00
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
5.7 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
31.0%
Related for CVE-2014-1285