PT-2017-2718 · Apple+1 · Ipad+3
Published
2017-07-19
·
Updated
2018-12-07
·
CVE-2017-8248
CVSS v3.1
10
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Apple iPhone versions 5 and later
Apple iPad versions 4th generation and later
Apple iPod touch versions 6th generation and later
Description
The issue is caused by a buffer overflow. It may allow a remote attacker to compromise the confidentiality, integrity, and availability of protected information during the processing of a Downlink NAS message in Qualcomm Telephony.
Recommendations
For Apple iPhone versions 5 and later, update to a version that includes the fix for the buffer overflow issue in Qualcomm Telephony.
For Apple iPad versions 4th generation and later, update to a version that includes the fix for the buffer overflow issue in Qualcomm Telephony.
For Apple iPod touch versions 6th generation and later, update to a version that includes the fix for the buffer overflow issue in Qualcomm Telephony.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Qualcomm Telephony
Ipad
Iphone
Ipod Touch