1.2

CVE-2012-0645

EPSS 0.09%
Veröffentlicht 08.03.2012 22:55:04
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle product-security@apple.com
CVE-Watchlists
Login
Unerledigt
Login

Siri in Apple iOS before 5.1 does not properly restrict the ability of Mail.app to handle voice commands, which allows physically proximate attackers to bypass the locked state via a command that forwards an active e-mail message to an arbitrary recipient.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Apple ≫ iPhone OS Version < 5.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.09%	0.234

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	1.2	1.9	2.9	AV:L/AC:H/Au:N/C:N/I:P/A:N

http://lists.apple.com/archives/security-announce/2012/Mar/msg00001.html

Vendor Advisory

Mailing List

http://secunia.com/advisories/48288

Third Party Advisory

http://www.securitytracker.com/id?1026774

Third Party Advisory

VDB Entry

https://nvd.nist.gov/vuln/detail/CVE-2012-0645

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-0645

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-0645

EUVD