5.3 Medium
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.005 Low
EPSS
Percentile
75.3%
The Apple Pay component in Apple iOS before 9 allows remote terminals to obtain sensitive recent-transaction information during payments by leveraging the transaction-log feature.
CPE | Name | Operator | Version |
---|---|---|---|
apple:watchos | apple watchos | le | 2.0.0 |
apple:iphone_os | apple iphone os | le | 8.4.1 |
lists.apple.com/archives/security-announce/2015/Oct/msg00003.html
lists.apple.com/archives/security-announce/2015/Sep/msg00001.html
lists.apple.com/archives/security-announce/2015/Sep/msg00005.html
www.securityfocus.com/bid/76764
www.securitytracker.com/id/1033609
support.apple.com/HT205212
support.apple.com/HT205213
support.apple.com/HT205378