CVE-2017-14315Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple TV Software

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer5 documents5 sources
Severity
7.5HIGHNVD
EPSS
0.8%
top 26.28%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple TV SoftwareApple Iphone OS
Timeline
PublishedSep 12
Latest updateMay 14

Description

In Apple iOS 7 through 9, due to a BlueBorne flaw in the implementation of LEAP (Low Energy Audio Protocol), a large audio command can be sent to a targeted device and lead to a heap overflow with attacker-controlled data. Since the audio commands sent via LEAP are not properly validated, an attacker can use this overflow to gain full control of the device through the relatively high privileges of the Bluetooth stack in iOS. The attack bypasses Bluetooth access control; however, the default "Blu

CVSS vector

CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 1.6 | Impact: 5.9

Affected Packages2 packages

NVDapple/iphone_os30 versions+29

🔴Vulnerability Details

1
GHSA
GHSA-fh2g-g7qm-3vm4: In Apple iOS 7 through 9, due to a BlueBorne flaw in the implementation of LEAP (Low Energy Audio Protocol), a large audio command can be sent to a ta2022-05-14

📋Vendor Advisories

1
Apple
CVE-2017-14315: Apple TV Software 7.32019-05-13

🕵️Threat Intelligence

1
Fortinet
BlueBorne May Affect Billions of Bluetooth Devices2017-09-14

📄Research Papers

1
arXiv
Approach for GDPR Compliant Detection of COVID-19 Infection Chains2020-07-20