CVE-2010-0038

medium

Description

Recovery Mode in Apple iPhone OS 1.0 through 3.1.2, and iPhone OS for iPod touch 1.1 through 3.1.2, allows physically proximate attackers to bypass device locking, and read or modify arbitrary data, via a USB control message that triggers memory corruption.

References

http://www.securityfocus.com/bid/38040

http://support.apple.com/kb/HT4013

http://osvdb.org/62128

http://lists.apple.com/archives/security-announce/2010/Feb/msg00000.html

Details

Source: Mitre, NVD

Published: 2010-02-03

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 6.8

Vector: CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Medium