Lucene search
HistoryJan 30, 2015 - 11:59 a.m.
CVE-2014-4480
cve-2014-4480
directory traversal
apple ios
apple tv
vulnerability
symlink creation
filesystem access
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
5.7 Medium
AI Score
Confidence
Low
0.009 Low
EPSS
Percentile
82.6%
Directory traversal vulnerability in afc in AppleFileConduit in Apple iOS before 8.1.3 and Apple TV before 7.0.3 allows attackers to access unintended filesystem locations by creating a symlink.
Affected configurations
Node
appleiphone_osRange≤8.1.2
ORappletvosRange≤7.0.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| apple:iphone_os | apple iphone os | le | 8.1.2 |
| apple:tvos | apple tvos | le | 7.0.1 |
Related
prion
prion
Directory traversal
2015-01-30 11:59:00
cvelist
cvelist
CVE-2014-4480
2015-01-30 11:00:00
nvd
nvd
CVE-2014-4480
2015-01-30 11:59:12
nessus
nessus
Apple TV < 7.0.3 Multiple Vulnerabilities
2015-03-04 00:00:00
Apple iOS < 8.1.3 Multiple Vulnerabilities
2015-03-04 00:00:00
Apple TV < 7.0.3 Multiple Vulnerabilities
2015-02-03 00:00:00
securityvulns
securityvulns
Apple TV multiple security vulnerabilities
2015-02-02 00:00:00
APPLE-SA-2015-01-27-1 Apple TV 7.0.3
2015-02-02 00:00:00
APPLE-SA-2015-01-27-2 iOS 8.1.3
2015-02-02 00:00:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
5.7 Medium
AI Score
Confidence
Low
0.009 Low
EPSS
Percentile
82.6%
Related for CVE-2014-4480