CVE-2015-7113 — Vulnetix

CVE-2015-7113 PUBLISHED CVSS 10 CRITICAL

The LaunchServices component in Apple iOS before 9.2 and watchOS before 2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a malformed plist.

EPSS 1.18% · 79.0th percentile

Risk Scores

CVSS v2.0

EPSS Score

1.18%

79.0th percentile

Affected Products

Vendor	Product	Versions
apple	watchos	0
apple	iphone_os	0
n/a	n/a	*

Timeline

Dec 9, 2015 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Sep 3, 2022 EPSS Score
Dec 17, 2022 EPSS Score
Feb 8, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 1, 2023 EPSS Score
May 24, 2023 EPSS Score
Jul 15, 2023 EPSS Score

References

https://support.apple.com/en-us/HT205635 advisory
https://support.apple.com/HT205635 url
APPLE-SA-2015-12-08-4 vendor-advisory
1034348 vdb
APPLE-SA-2015-12-08-1 vendor-advisory
https://support.apple.com/HT205641 url
https://nvd.nist.gov/vuln/detail/CVE-2015-7113 advisory

Open in Interactive Console →