Skip to main content

Libimobiledevice

2 CVEs product

Monthly

CVE-2016-5104 MEDIUM This Month

The socket_create function in common/socket.c in libimobiledevice and libusbmuxd allows remote attackers to bypass intended access restrictions and communicate with services on iOS devices by. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Authentication Bypass Libimobiledevice Libusbmuxd Ubuntu Linux +2
NVD GitHub
CVSS 3.0
5.3
EPSS
1.8%
CVE-2013-2142 LOW POC Monitor

userpref.c in libimobiledevice 1.1.4, when $HOME and $XDG_CONFIG_HOME are not set, allows local users to overwrite arbitrary files via a symlink attack on (1) HostCertificate.pem, (2). Rated low severity (CVSS 3.3). Public exploit code available and no vendor patch available.

Information Disclosure Libimobiledevice
NVD
CVSS 2.0
3.3
EPSS
0.0%
EPSS 2% CVSS 5.3
MEDIUM This Month

The socket_create function in common/socket.c in libimobiledevice and libusbmuxd allows remote attackers to bypass intended access restrictions and communicate with services on iOS devices by. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apple Authentication Bypass Libimobiledevice +4
NVD GitHub
EPSS 0% CVSS 3.3
LOW POC Monitor

userpref.c in libimobiledevice 1.1.4, when $HOME and $XDG_CONFIG_HOME are not set, allows local users to overwrite arbitrary files via a symlink attack on (1) HostCertificate.pem, (2). Rated low severity (CVSS 3.3). Public exploit code available and no vendor patch available.

Information Disclosure Libimobiledevice
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy