CVE-2015-5923

EPSS 0.07%
Veröffentlicht 09.10.2015 05:59:39
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle product-security@apple.com
CVE-Watchlists
Login
Unerledigt
Login

Apple iOS before 9.0.2 does not properly restrict the options available on the lock screen, which allows physically proximate attackers to read contact data or view photos via unspecified vectors.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Apple ≫ iPhone OS Version <= 9.0.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.07%	0.179

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	2.1	3.9	2.9	AV:L/AC:L/Au:N/C:P/I:N/A:N

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://lists.apple.com/archives/security-announce/2015/Sep/msg00006.html

Vendor Advisory

http://www.securitytracker.com/id/1033687

https://support.apple.com/HT205284

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2015-5923

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-5923

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-5923

EUVD