Vulnerability Description
The Apple iWork application before 2.6 for iOS, Apple Keynote before 6.6, Apple Pages before 5.6, and Apple Numbers before 3.6 allow remote attackers to obtain sensitive information via a crafted document.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Numbers | <= 3.5 |
| Apple | Iwork | <= 2.5.4 |
| Apple | Pages | <= 5.5.3 |
| Apple | Keynote | <= 6.5 |
Related Weaknesses (CWE)
References
- http://lists.apple.com/archives/security-announce/2015/Oct/msg00000.htmlVendor Advisory
- http://www.securitytracker.com/id/1033823Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1033825Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1033826Third Party AdvisoryVDB Entry
- https://support.apple.com/HT205373Vendor Advisory
- http://lists.apple.com/archives/security-announce/2015/Oct/msg00000.htmlVendor Advisory
- http://www.securitytracker.com/id/1033823Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1033825Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1033826Third Party AdvisoryVDB Entry
- https://support.apple.com/HT205373Vendor Advisory
FAQ
What is CVE-2015-7032?
CVE-2015-7032 is a vulnerability with a CVSS score of 4.3 (MEDIUM). The Apple iWork application before 2.6 for iOS, Apple Keynote before 6.6, Apple Pages before 5.6, and Apple Numbers before 3.6 allow remote attackers to obtain sensitive information via a crafted docu...
How severe is CVE-2015-7032?
CVE-2015-7032 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-7032?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Numbers, Apple Iwork, Apple Pages, Apple Keynote.