Lucene search
HistoryAug 17, 2015 - 12:00 a.m.
CVE-2015-5746
apple
ios
vulnerability
cve-2015-5746
filesystem
symlink
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
5.9 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
56.3%
AppleFileConduit in Apple iOS before 8.4.1 allows attackers to bypass intended restrictions on filesystem access via an afc command that leverages symlink mishandling.
Affected configurations
Node
appleiphone_osRange≤8.4
| CPE | Name | Operator | Version |
|---|---|---|---|
| apple:iphone_os | apple iphone os | le | 8.4 |
Related
cvelist
cvelist
CVE-2015-5746
2015-08-16 23:00:00
nvd
nvd
CVE-2015-5746
2015-08-17 00:00:24
prion
prion
Command injection
2015-08-17 00:00:00
securityvulns
securityvulns
APPLE-SA-2015-08-13-3 iOS 8.4.1
2015-08-17 00:00:00
Apple iOS multiple security vulnerabilities
2015-08-17 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
5.9 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
56.3%
Related for CVE-2015-5746