Lucene search
HistoryApr 10, 2015 - 2:59 p.m.
CVE-2015-1086
cve-2015-1086
apple
ios
apple tv
audio drivers
iokit
security vulnerability
6.6 Medium
AI Score
Confidence
Low
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.004 Low
EPSS
Percentile
74.2%
The Audio Drivers subsystem in Apple iOS before 8.3 and Apple TV before 7.2 does not properly validate IOKit object metadata, which allows attackers to execute arbitrary code in a privileged context via a crafted app.
| CPE | Name | Operator | Version |
|---|---|---|---|
| apple:tvos | apple tvos | le | 7.1 |
| apple:iphone_os | apple iphone os | le | 8.2 |
Related
prion
prion
Code injection
2015-04-10 14:59:00
cvelist
cvelist
CVE-2015-1086
2015-04-10 14:00:00
nessus
nessus
Apple TV < 7.2 Multiple Vulnerabilities
2015-07-10 00:00:00
Apple iOS < 8.3 Multiple Vulnerabilities
2015-07-10 00:00:00
Apple TV < 7.2 Multiple Vulnerabilities
2015-04-10 00:00:00
securityvulns
securityvulns
Apple TV multiple security vulnerabilities
2015-04-09 00:00:00
APPLE-SA-2015-04-08-4 Apple TV 7.2
2015-04-09 00:00:00
Apple iOS multiple security vulnerabilities
2015-04-17 00:00:00
6.6 Medium
AI Score
Confidence
Low
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.004 Low
EPSS
Percentile
74.2%
Related for CVE-2015-1086