CVE-2014-1285
Published Mar 14, 2014
Last updated 11 years ago
Overview
- Description
- Springboard in Apple iOS before 7.1 allows physically proximate attackers to bypass intended access restrictions and read the home screen by leveraging an application crash during activation of an unactivated device.
- Source
- product-security@apple.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5.8
- Impact score
- 4.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:P/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-264
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CF3077AD-297B-4DCA-98B8-5343D24B0C15",
"versionEndIncluding": "7.0.6"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:7.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "07A11433-B725-4BD6-B998-4B3637F061EC"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:7.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4FD62141-07B1-4E3D-80BC-25D519F90DBD"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:7.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D9737BD4-B4F4-4291-A1E9-B692ECBC657E"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:7.0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B6160869-944D-4E34-BB81-6A1259D692B1"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:7.0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "090CAC3C-4B20-46E5-A8C7-950B7E1DB5E9"
},
{
"criteria": "cpe:2.3:o:apple:iphone_os:7.0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E96F77DD-0962-4E55-97A2-9BC2FE01D8A8"
}
],
"operator": "OR"
}
]
}
]