Lucene search

AppleCVE-2016-7759

HistoryFeb 20, 2017 - 8:59 a.m.

CVE-2016-7759

2017-02-2008:59:04

CWE-200

apple

web.nvd.nist.gov

apple

ios

security

vulnerability

cve-2016-7759

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

4.3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

4.7

Confidence

Low

EPSS

Percentile

12.6%

JSON

An issue was discovered in certain Apple products. iOS before 10 is affected. The issue involves the “Springboard” component, which allows physically proximate attackers to obtain sensitive information by viewing application snapshots in the Task Switcher.

Affected configurations

Nvd

Node

appleiphone_osRange≤9.3.5

VendorProductVersionCPE
appleiphone_oscpe:/o:apple:iphone_os::::

Vendor	Product	Version	CPE
apple	iphone_os		cpe:/o:apple:iphone_os::::

References

support.apple.com/HT207143

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

CVSS3

4.3

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

4.7

Confidence

Low

EPSS

Percentile

12.6%

JSON

Related for CVE-2016-7759