Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2015-5874
HistorySep 18, 2015 - 12:00 p.m.

CVE-2015-5874

2015-09-1812:00:00
CWE-119
[email protected]
web.nvd.nist.gov
39
cve-2015-5874
coretext
memory corruption
apple ios
itunes
remote code execution
denial of service
nvd

7.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.031 Low

EPSS

Percentile

91.0%

JSON

CoreText in Apple iOS before 9 and iTunes before 12.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file.

Related

prion 1
securityvulns 8
nessus 4
openvas 1
kaspersky 1
prion
prion
Memory corruption
2015-09-18 12:00:00
securityvulns
securityvulns
APPLE-SA-2015-09-21-1 watchOS 2
2015-10-05 00:00:00
Apple watchOS security vulnerabilities
2015-10-25 00:00:00
APPLE-SA-2015-09-16-3 iTunes 12.3
2015-10-05 00:00:00
nessus
nessus
Apple iTunes < 12.3 Multiple Vulnerabilities (credentialed check)
2015-09-18 00:00:00
Apple iTunes < 12.3 Multiple Vulnerabilities (uncredentialed check)
2015-10-26 00:00:00
iTunes for Windows < 12.3 Multiple Vulnerabilities
2015-10-23 00:00:00
openvas
openvas
Apple iTunes Multiple Vulnerabilities (Sep 2015) - Windows
2015-10-01 00:00:00
kaspersky
kaspersky
KLA10669 Multiple vulnerabilities in Apple iTunes
2015-09-16 00:00:00

7.3 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.031 Low

EPSS

Percentile

91.0%

JSON
Related for CVE-2015-5874
prion1securityvulns8nessus4openvas1kaspersky1