CVE-2013-0981 — Apple Iphone OS vulnerability

2 documents2 sources

Severity

7.2HIGHNVD

EPSS

0.0%

top 86.37%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Iphone OS Apple Tvos

Timeline

PublishedMar 20

Latest updateMay 13

Description

The IOUSBDeviceFamily driver in the USB implementation in the kernel in Apple iOS before 6.1.3 and Apple TV before 5.2.1 accesses pipe object pointers that originated in userspace, which allows local users to gain privileges via crafted code.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

▶NVDapple/tvos5.2.0+28

▶NVDapple/iphone_os6.1.2+45

🔴Vulnerability Details

GHSA

GHSA-5gxv-6c2p-wjf3: The IOUSBDeviceFamily driver in the USB implementation in the kernel in Apple iOS before 6↗2022-05-13

▶