Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2013-5193
HistoryNov 18, 2013 - 2:55 a.m.

Design/Logic Flaw

2013-11-1802:55:00
PRIOn knowledge base
www.prio-n.com
3

6.3 Medium

AI Score

Confidence

Low

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:N/I:C/A:N

0.0004 Low

EPSS

Percentile

5.4%

JSON

The App Store component in Apple iOS before 7.0.4 does not properly enforce an intended transaction-time password requirement, which allows local users to complete a (1) App purchase or (2) In-App purchase by leveraging previous entry of Apple ID credentials.

Related

securityvulns 2
nessus 1
thn 2
seebug 1
cvelist 1
cve 1
securityvulns
securityvulns
Apple iOS authentication bypass
2013-11-18 00:00:00
APPLE-SA-2013-11-14-1 iOS 7.0.4
2013-11-18 00:00:00
nessus
nessus
Apple iOS 7.x < 7.0.4 Purchases Authentication Bypass
2011-11-28 00:00:00
thn
thn
Apple iOS 7.0.4 update released to patch Apple Store purchase vulnerability
2013-11-16 04:16:00
Apple iOS 7.0.4 update released to patch Apple Store purchase vulnerability
2013-11-16 15:16:00
seebug
seebug
Apple iOS本地安全限制绕漏洞(CVE-2013-5193)
2013-11-17 00:00:00
cvelist
cvelist
CVE-2013-5193
2022-10-03 16:14:55
cve
cve
CVE-2013-5193
2013-11-18 02:55:00

6.3 Medium

AI Score

Confidence

Low

4.7 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:N/I:C/A:N

0.0004 Low

EPSS

Percentile

5.4%

JSON
Related for PRION:CVE-2013-5193
securityvulns2nessus1thn2seebug1cvelist1cve1