Published: 12/03/2015 Updated: 08/03/2019

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

MobileStorageMounter in Apple iOS prior to 8.2 and Apple TV prior to 7.1 does not delete invalid disk-image folders, which allows malicious users to create folders in arbitrary filesystem locations via a crafted app.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple tvos
apple iphone os

Apple slips out security patches while world goes gaga over watches

The Register • Shaun Nichols in San Francisco • 10 Mar 2015

Remote-code exec in iOS, OS X iCloud, plus FREAK fix

While everyone was losing their mind over expensive watches, Apple sneaked out security fixes for iOS phones and tablets, and OS X computers. Both the OS X Security Update 2015-002 and iOS 8.2 address critical flaws. Leading the charge is a patch to squish the FREAK bug in the two operating systems' SSL/TLS code. Disclosed last week by researchers, the flaw allows an eavesdropper to intercept connections to HTTPS websites and downgrade the strength of the encryption, allowing miscreants to crack...

CVE-2015-1062

Vulnerability Summary

Vulnerability Trend

Recent Articles

References

Vulmon Search

About

Products

Connect