Lucene search

[email protected]CVE-2015-7101

HistoryDec 11, 2015 - 11:59 a.m.

CVE-2015-7101

2015-12-1111:59:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2015-7101

apple ios

safari

remote code execution

memory corruption

denial of service

8.8 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

80.2%

JSON

WebKit in Apple iOS before 9.2, Safari before 9.0.2, and tvOS before 9.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2015-7048, CVE-2015-7095, CVE-2015-7096, CVE-2015-7097, CVE-2015-7098, CVE-2015-7099, CVE-2015-7100, CVE-2015-7102, and CVE-2015-7103.

CPENameOperatorVersion
apple:tvosapple tvosle9.0
apple:iphone_osapple iphone osle9.1
apple:safariapple safarile9.0.1

CPE	Name	Operator	Version
apple:tvos	apple tvos	le	9.0
apple:iphone_os	apple iphone os	le	9.1
apple:safari	apple safari	le	9.0.1

References

lists.apple.com/archives/security-announce/2015/Dec/msg00000.html

lists.apple.com/archives/security-announce/2015/Dec/msg00001.html

lists.apple.com/archives/security-announce/2015/Dec/msg00003.html

www.securityfocus.com/bid/78726

www.securitytracker.com/id/1034341

support.apple.com/HT205635

support.apple.com/HT205639

support.apple.com/HT205640

support.apple.com/kb/HT205636

8.8 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

80.2%

JSON

Related for CVE-2015-7101

prion10 ubuntucve10 cve9 debiancve2 kaspersky1 nessus10 openvas2 fedora3 mageia1 gentoo1