CVE-2013-5158 — LOW (2.1) — White Hats Nepal

Q: How severe is CVE-2013-5158?

CVE-2013-5158 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2013-5158?

Check the references section above for vendor advisories and patch information. Affected products include: Apple Iphone Os.

Vulnerability Description

The Social subsystem in Apple iOS before 7 does not properly restrict access to the cache of Twitter icons, which allows physically proximate attackers to obtain sensitive information about recent Twitter interaction via unspecified vectors.

CVSS Score

2.1

LOW

AV:L/AC:L/Au:N/C:P/I:N/A:N

Confidentiality

PARTIAL

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Apple	Iphone Os	<= 6.1.4

Related Weaknesses (CWE)

CWE-264

References

http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.htmlVendor Advisory
http://support.apple.com/kb/HT5934Vendor Advisory
http://www.securitytracker.com/id/1029054
http://lists.apple.com/archives/security-announce/2013/Sep/msg00006.htmlVendor Advisory
http://support.apple.com/kb/HT5934Vendor Advisory
http://www.securitytracker.com/id/1029054

FAQ

What is CVE-2013-5158?

CVE-2013-5158 is a vulnerability with a CVSS score of 2.1 (LOW). The Social subsystem in Apple iOS before 7 does not properly restrict access to the cache of Twitter icons, which allows physically proximate attackers to obtain sensitive information about recent Twi...

How severe is CVE-2013-5158?

CVE-2013-5158 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2013-5158?

Check the references section above for vendor advisories and patch information. Affected products include: Apple Iphone Os.