CVE-2013-5142

2013-09-1910:00:00

apple

www.cve.org

4.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

The kernel in Apple iOS before 7 does not initialize unspecified kernel data structures, which allows local users to obtain sensitive information from kernel stack memory via the (1) msgctl API or (2) segctl API.

References

lists.apple.com/archives/security-announce/2013/Oct/msg00004.html

lists.apple.com/archives/security-announce/2013/Sep/msg00006.html

support.apple.com/kb/HT5934

www.securitytracker.com/id/1029054