CVE-2013-5140Improper Input Validation in Apple Iphone OS

CWE-20Improper Input Validation2 documents2 sources
Severity
7.8HIGHNVD
EPSS
0.7%
top 28.81%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Iphone OS
Timeline
PublishedSep 19
Latest updateMay 17

Description

The kernel in Apple iOS before 7 allows remote attackers to cause a denial of service (assertion failure and device restart) via an invalid packet fragment.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

NVDapple/iphone_os6.1.4+47

🔴Vulnerability Details

1
GHSA
GHSA-xmvf-7wg4-234h: The kernel in Apple iOS before 7 allows remote attackers to cause a denial of service (assertion failure and device restart) via an invalid packet fra2022-05-17
CVE-2013-5140 — Improper Input Validation in Apple | cvebase