Lucene search
HistoryJul 03, 2015 - 2:00 a.m.
CVE-2015-3722
apple
ios
pre-8.4
denial of service
crafted universal provisioning
nvd
cve-2015-3722
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
5.6 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
71.9%
Application Store in Apple iOS before 8.4 does not ensure the uniqueness of bundle IDs, which allows attackers to cause a denial of service (ID collision and launch outage) via a crafted universal provisioning profile app.
Affected configurations
Node
appleiphone_osRange≤8.3
| CPE | Name | Operator | Version |
|---|---|---|---|
| apple:iphone_os | apple iphone os | le | 8.3 |
Related
nvd
nvd
CVE-2015-3722
2015-07-03 02:00:13
prion
prion
Code injection
2015-07-03 02:00:00
cvelist
cvelist
CVE-2015-3722
2015-07-03 01:00:00
threatpost
threatpost
Apple Patches Dozens of Flaws in iOS 8.4, OS X 10.10.4
2015-06-30 14:28:47
securityvulns
securityvulns
Apple iOS multiple security vulnerabilities
2015-07-05 00:00:00
APPLE-SA-2015-06-30-1 iOS 8.4
2015-07-05 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
5.6 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
71.9%
Related for CVE-2015-3722