CVE-2013-5148 — HIGH (7.2) — White Hats Nepal

Q: How severe is CVE-2013-5148?

CVE-2013-5148 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2013-5148?

Check the references section above for vendor advisories and patch information. Affected products include: Apple Keynote.

Vulnerability Description

Apple Keynote before 6.0 does not properly handle the interaction between Keynote presentation mode and the Screen Lock implementation, which allows physically proximate attackers to obtain access by visiting an unattended workstation on which this mode was enabled during a sleep operation.

CVSS Score

7.2

HIGH

AV:L/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Apple	Keynote	<= 5.3

Related Weaknesses (CWE)

CWE-264

References

http://lists.apple.com/archives/security-announce/2013/Oct/msg00005.htmlVendor Advisory
http://lists.apple.com/archives/security-announce/2013/Oct/msg00005.htmlVendor Advisory

FAQ

What is CVE-2013-5148?

CVE-2013-5148 is a vulnerability with a CVSS score of 7.2 (HIGH). Apple Keynote before 6.0 does not properly handle the interaction between Keynote presentation mode and the Screen Lock implementation, which allows physically proximate attackers to obtain access by ...

How severe is CVE-2013-5148?

CVE-2013-5148 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-5148?

Check the references section above for vendor advisories and patch information. Affected products include: Apple Keynote.