CVE-2015-5752Link Following in Apple Iphone OS

CWE-59Link Following3 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.4%
top 37.37%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple Iphone OSApple IOS
Timeline
PublishedAug 17
Latest updateMay 17

Description

Backup in Apple iOS before 8.4.1 allows attackers to bypass intended restrictions on filesystem access via a crafted app that creates a symlink.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

Appleapple/ios8.4.1

🔴Vulnerability Details

1
GHSA
GHSA-78qg-q6hh-66c3: Backup in Apple iOS before 82022-05-17

📋Vendor Advisories

1
Apple
CVE-2015-5752: iOS 8.4.1
CVE-2015-5752 — Link Following in Apple Iphone OS | cvebase