7.2
CVE-2011-3442
- EPSS 0.36%
- Veröffentlicht 11.11.2011 18:55:01
- Zuletzt bearbeitet 16.06.2026 23:33:17
- Quelle product-security@apple.com
- CVE-Watchlists
- Unerledigt
The kernel in Apple iOS before 5.0.1 does not ensure the validity of flag combinations for an mmap system call, which allows local users to execute arbitrary unsigned code via a crafted app.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.36% | 0.275 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
http://lists.apple.com/archives/Security-announce/2011/Nov/msg00001.html
http://support.apple.com/kb/HT5052
http://www.securitytracker.com/id?1026287