Lucene search
HistoryDec 11, 2015 - 11:59 a.m.
CVE-2015-7081
cve-2015-7081
apple
ios
os x
ibooks
remote attackers
arbitrary files
xml
xxe issue
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
8 High
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
77.6%
iBooks in Apple iOS before 9.2 and OS X before 10.11.2 allows remote attackers to read arbitrary files via an iBooks file containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.
Affected configurations
Node
applemac_os_xRange≤10.11.1
Node
appleiphone_osRange≤9.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| apple:mac_os_x | apple mac os x | le | 10.11.1 |
Related
prion
prion
Xxe
2015-12-11 11:59:00
nvd
nvd
CVE-2015-7081
2015-12-11 11:59:46
cvelist
cvelist
CVE-2015-7081
2015-12-11 11:00:00
openvas
openvas
Apple Mac OS X Multiple Vulnerabilities-01 (Dec 2015)
2015-12-15 00:00:00
nessus
nessus
Mac OS X Multiple Vulnerabilities (Security Updates 2015-005 / 2015-008)
2015-12-11 00:00:00
Mac OS X 10.11.x < 10.11.2 Multiple Vulnerabilities
2015-12-10 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
8 High
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
77.6%
Related for CVE-2015-7081