CVE-2011-3432Apple Iphone OS vulnerability

CWE-3993 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.7%
top 27.17%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Iphone OS
Timeline
PublishedOct 14
Latest updateMay 17

Description

The UIKit Alerts component in Apple iOS before 5 allows remote attackers to cause a denial of service (device hang) via a long tel: URL that triggers a large size for the acceptance dialog.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDapple/iphone_os19 versions+18

🔴Vulnerability Details

1
GHSA
GHSA-5qpr-74jv-67h8: The UIKit Alerts component in Apple iOS before 5 allows remote attackers to cause a denial of service (device hang) via a long tel: URL that triggers2022-05-17
CVE-2011-3432 — Apple Iphone OS vulnerability | cvebase