CVE-2013-1036Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple Iphone OS

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
6.8MEDIUMNVD
EPSS
2.2%
top 15.39%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Iphone OS
Timeline
PublishedSep 19
Latest updateMay 17

Description

Safari in Apple iOS before 7 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

NVDapple/iphone_os6.1.4+47

🔴Vulnerability Details

1
GHSA
GHSA-jq8x-p3pq-3364: Safari in Apple iOS before 7 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML docu2022-05-17
CVE-2013-1036 — Apple Iphone OS vulnerability | cvebase