CVE-2014-1350Apple Iphone OS vulnerability

CWE-2643 documents3 sources
Severity
4.6MEDIUMNVD
EPSS
0.1%
top 80.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Iphone OS
Timeline
PublishedJul 1
Latest updateMay 17

Description

Settings in Apple iOS before 7.1.2 allows physically proximate attackers to bypass an intended iCloud password requirement, and turn off the Find My iPhone service, by leveraging incorrect state management.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

NVDapple/iphone_os7.1.1+8

🔴Vulnerability Details

1
GHSA
GHSA-w2cp-3pwp-4mwm: Settings in Apple iOS before 72022-05-17
CVE-2014-1350 — Apple Iphone OS vulnerability | cvebase