Detections
Analytics

Apple iOS < 8.1.3 Multiple Vulnerabilities

critical Nessus Plugin ID 81050

Language:

Synopsis

The version of iOS running on the mobile device is affected by multiple vulnerabilities.

Description

The mobile device is running a version of iOS prior to version 8.1.3.
It is, therefore, affected by vulnerabilities in the following components :

 - AppleFileConduit
 - CoreGraphics
 - dyld
 - FontParser
 - Foundation
 - IOAcceleratorFamily
 - IOHIDFamily
 - iTunes Store
 - Kernel
 - libnetcore
 - MobileInstallation
 - Springboard
 - WebKit

Solution

Upgrade to Apple iOS version 8.1.3 or later.

See Also

https://support.apple.com/en-us/HT204245

Plugin Details

Severity: Critical

ID: 81050

File Name: apple_ios_813_check.nbin

Version: 1.94

Type: local

Published: 1/28/2015

Updated: 4/8/2024

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2014-4495

Vulnerability Information

CPE: cpe:/o:apple:iphone_os

Required KB Items: mdm/dependency/unlocked

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 1/27/2015

Vulnerability Publication Date: 1/27/2015

Reference Information

CVE: CVE-2014-3192, CVE-2014-4455, CVE-2014-4459, CVE-2014-4465, CVE-2014-4466, CVE-2014-4467, CVE-2014-4468, CVE-2014-4469, CVE-2014-4470, CVE-2014-4471, CVE-2014-4472, CVE-2014-4473, CVE-2014-4474, CVE-2014-4475, CVE-2014-4476, CVE-2014-4477, CVE-2014-4479, CVE-2014-4480, CVE-2014-4481, CVE-2014-4483, CVE-2014-4484, CVE-2014-4485, CVE-2014-4487, CVE-2014-4488, CVE-2014-4489, CVE-2014-4491, CVE-2014-4492, CVE-2014-4493, CVE-2014-4494, CVE-2014-4495, CVE-2014-4496, CVE-2014-8840

BID: 70273, 71140, 71144, 71438, 71439, 71442, 71444, 71445, 71449, 71451, 71459, 71461, 71462, 72327, 72329, 72330, 72331, 72333, 72334

APPLE-SA: APPLE-SA-2015-01-27-2