Lucene search

[email protected]CVE-2015-7070

HistoryDec 11, 2015 - 11:59 a.m.

CVE-2015-7070

2015-12-1111:59:35

[email protected]

web.nvd.nist.gov

cve-2015-7070

mobile replayer

gputools framework

apple ios

arbitrary code

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.9 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

54.6%

JSON

Mobile Replayer in GPUTools Framework in Apple iOS before 9.2 allows attackers to execute arbitrary code in a privileged context via an app that provides a crafted pathname, a different vulnerability than CVE-2015-7069.

Affected configurations

NVD

Node

appleiphone_osRange≤9.1

CPENameOperatorVersion
apple:iphone_osapple iphone osle9.1

CPE	Name	Operator	Version
apple:iphone_os	apple iphone os	le	9.1

References

lists.apple.com/archives/security-announce/2015/Dec/msg00000.html

www.securitytracker.com/id/1034348

support.apple.com/HT205635

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.9 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

54.6%

JSON

Related for CVE-2015-7070

prion2 cvelist2 nvd2 cve1