Lucene search

[email protected]CVE-2015-7032

HistoryOct 18, 2015 - 7:59 p.m.

CVE-2015-7032

2015-10-1819:59:00

CWE-200

[email protected]

web.nvd.nist.gov

cve-2015-7032

apple

iwork

keynote

pages

numbers

ios

vulnerability

information security

remote attack

sensitive information

5.8 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

67.5%

JSON

The Apple iWork application before 2.6 for iOS, Apple Keynote before 6.6, Apple Pages before 5.6, and Apple Numbers before 3.6 allow remote attackers to obtain sensitive information via a crafted document.

CPENameOperatorVersion
apple:numbersapple numbersle3.5
apple:iworkapple iworkle2.5.4
apple:pagesapple pagesle5.5.3
apple:keynoteapple keynotele6.5

CPE	Name	Operator	Version
apple:numbers	apple numbers	le	3.5
apple:iwork	apple iwork	le	2.5.4
apple:pages	apple pages	le	5.5.3
apple:keynote	apple keynote	le	6.5

References

lists.apple.com/archives/security-announce/2015/Oct/msg00000.html

www.securitytracker.com/id/1033823

www.securitytracker.com/id/1033825

www.securitytracker.com/id/1033826

support.apple.com/HT205373

5.8 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

67.5%

JSON

Related for CVE-2015-7032

cvelist1 prion1 securityvulns2