2.1 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
5.9 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
44.5%
The Certificate UI in Apple iOS before 8.4.1 does not prevent X.509 certificate acceptance within the lock screen, which allows physically proximate attackers to establish arbitrary certificate trust relationships by completing a dialog.
CPE | Name | Operator | Version |
---|---|---|---|
apple:iphone_os | apple iphone os | le | 8.4 |