CVE-2015-1092
CVE-2015-1092 refers to an XML External Entity (XXE) issue in NSXMLParser within Foundation used by Apple iOS before 8.3 and Apple TV before 7.2. The vulnerability allows remote attackers to read arbitrary files via an external entity declaration combined with an entity reference. Apple’s advisor...