PT-2017-13146 · Apple · Ios

Miguel Alvarado

Published

2017-11-13

Updated

2019-04-29

CVE-2017-13844

CVSS v3.1

2.4

Low

Vector

AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions iOS versions prior to 11.1

Description An issue in the Messages component allows physically proximate attackers to view arbitrary photos via a Reply With Message action when the device is in the lock-screen state.

Recommendations For iOS versions prior to 11.1, update to version 11.1 or later to resolve the issue. As a temporary workaround, consider disabling the Reply With Message action on the lock screen to minimize the risk of exploitation.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2017-13844

Affected Products

Ios

PT-2017-13146 · Apple · Ios

CVE-2017-13844

Weakness Enumeration

Related Identifiers

Affected Products

References · 5