Lucene search

PRIOn knowledge basePRION:CVE-2014-4374

HistorySep 18, 2014 - 10:55 a.m.

Xxe

2014-09-1810:55:00

PRIOn knowledge base

www.prio-n.com

6 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.004 Low

EPSS

Percentile

71.8%

JSON

NSXMLParser in Foundation in Apple iOS before 8 allows attackers to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

CPENameOperatorVersion
iphone_oseq7.0.4
iphone_oseq7.1.1
iphone_osle7.1.2
iphone_oseq7.0.5
iphone_oseq7.1
iphone_oseq7.0.6
iphone_oseq7.0.1
iphone_oseq7.0.2
iphone_oseq7.0
iphone_oseq7.0.3

Name	Operator	Version
iphone_os	eq	7.0.4
iphone_os	eq	7.1.1
iphone_os	le	7.1.2
iphone_os	eq	7.0.5
iphone_os	eq	7.1
iphone_os	eq	7.0.6
iphone_os	eq	7.0.1
iphone_os	eq	7.0.2
iphone_os	eq	7.0
iphone_os	eq	7.0.3

Rows per page:

1-10 of 111

References

archives.neohapsis.com/archives/bugtraq/2014-09/0106.html

support.apple.com/kb/HT6441

support.apple.com/kb/HT6443

www.securityfocus.com/bid/69882

www.securityfocus.com/bid/69905

www.securitytracker.com/id/1030866

exchange.xforce.ibmcloud.com/vulnerabilities/96077

6 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.004 Low

EPSS

Percentile

71.8%

JSON

Related for PRION:CVE-2014-4374