CVE-2011-3441Sensitive Information Exposure in Apple Iphone OS

CWE-200Sensitive Information Exposure2 documents2 sources
Severity
4.3MEDIUMNVD
EPSS
0.4%
top 37.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Iphone OS
Timeline
PublishedNov 11
Latest updateMay 13

Description

libinfo in Apple iOS before 5.0.1 does not properly formulate domain-name queries, which allows remote attackers to obtain sensitive information via a crafted DNS hostname.

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDapple/iphone_os5.0+43

🔴Vulnerability Details

1
GHSA
GHSA-cc54-p9g4-cx6g: libinfo in Apple iOS before 52022-05-13
CVE-2011-3441 — Sensitive Information Exposure in Apple | cvebase