Lucene search
AppleCVE-2013-0963HistoryJan 29, 2013 - 5:58 a.m.
CVE-2013-0963
2013-01-2905:58:54
CWE-20
apple
web.nvd.nist.gov
30
apple
ios
authentication bypass
certificate validation
cve-2013-0963
nvd
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
5.9
Confidence
Low
EPSS
0.001
Percentile
39.7%
Identity Services in Apple iOS before 6.1 does not properly handle validation failures of AppleID certificates, which might allow physically proximate attackers to bypass authentication by leveraging an incorrect assignment of an empty string value to an AppleID.
Affected configurations
Node
appleiphone_osRange≤6.0.2
ORappleiphone_osMatch6.0
ORappleiphone_osMatch6.0.1
Related
cvelist
cvelist
CVE-2013-0963
2013-01-29 02:00:00
nvd
nvd
CVE-2013-0963
2013-01-29 05:58:54
seebug
seebug
Apple iPhone/iPad/iPod touch iOS 6.1之前版本安全绕过漏洞
2013-01-30 00:00:00
Apple iPhone/iPad/iPod touch CVE-2013-0963验证绕过漏洞
2013-02-03 00:00:00
prion
prion
Authentication flaw
2013-01-29 05:58:00
nessus
nessus
Mac OS X 10.8.x < 10.8.3 Multiple Vulnerabilities
2013-03-15 00:00:00
Mac OS X 10.8 < 10.8.3 Multiple Vulnerabilities (Security Update 2013-001)
2013-03-16 00:00:00
Mac OS X Multiple Vulnerabilities (Security Update 2013-001)
2013-03-15 00:00:00
securityvulns
securityvulns
Apple Mac OS X multiple security vulnerabilities
2013-03-24 00:00:00
APPLE-SA-2013-01-28-1 iOS 6.1 Software Update
2013-02-04 00:00:00
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:L/Au:N/C:N/I:P/A:N
AI Score
5.9
Confidence
Low
EPSS
0.001
Percentile
39.7%
Related for CVE-2013-0963