2.6

CVE-2008-4233

Safari in Apple iPhone OS 1.0 through 2.1 and iPhone OS for iPod touch 1.1 through 2.1 does not isolate the call-approval dialog from the process of launching new applications, which allows remote attackers to make arbitrary phone calls via a crafted HTML document.

Data is provided by the National Vulnerability Database (NVD)
AppleSafari
   AppleIpod Touch
   AppleiPhone OS
AppleiPhone OS Version1.0
   AppleIpod Touch
   AppleiPhone OS
AppleiPhone OS Version1.0.1
   AppleIpod Touch
   AppleiPhone OS
AppleiPhone OS Version1.0.2
   AppleIpod Touch
   AppleiPhone OS
AppleiPhone OS Version1.1
   AppleIpod Touch
   AppleiPhone OS
AppleiPhone OS Version1.1.1
   AppleIpod Touch
   AppleiPhone OS
AppleiPhone OS Version1.1.2
   AppleIpod Touch
   AppleiPhone OS
AppleiPhone OS Version1.1.3
   AppleIpod Touch
   AppleiPhone OS
AppleiPhone OS Version1.1.4
   AppleIpod Touch
   AppleiPhone OS
AppleiPhone OS Version1.1.5
   AppleIpod Touch
   AppleiPhone OS
AppleiPhone OS Version2.0
   AppleIpod Touch
   AppleiPhone OS
AppleiPhone OS Version2.0.1
   AppleIpod Touch
   AppleiPhone OS
AppleiPhone OS Version2.0.2
   AppleIpod Touch
   AppleiPhone OS
AppleiPhone OS Version2.1
   AppleIpod Touch
   AppleiPhone OS
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 1.16% 0.766
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 2.6 4.9 2.9
AV:N/AC:H/Au:N/C:N/I:N/A:P