Vulnerability Description
The Apple iWork application before 2.6 for iOS, Apple Keynote before 6.6, Apple Pages before 5.6, and Apple Numbers before 3.6 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted document.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Numbers | <= 3.5 |
| Apple | Pages | <= 5.5.3 |
| Apple | Keynote | <= 6.5 |
| Apple | Iwork | <= 2.5.4 |
Related Weaknesses (CWE)
References
- http://lists.apple.com/archives/security-announce/2015/Oct/msg00000.htmlVendor Advisory
- http://www.securitytracker.com/id/1033823Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1033825Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1033826Third Party AdvisoryVDB Entry
- https://support.apple.com/HT205373Vendor Advisory
- http://lists.apple.com/archives/security-announce/2015/Oct/msg00000.htmlVendor Advisory
- http://www.securitytracker.com/id/1033823Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1033825Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1033826Third Party AdvisoryVDB Entry
- https://support.apple.com/HT205373Vendor Advisory
FAQ
What is CVE-2015-7033?
CVE-2015-7033 is a vulnerability with a CVSS score of 6.8 (MEDIUM). The Apple iWork application before 2.6 for iOS, Apple Keynote before 6.6, Apple Pages before 5.6, and Apple Numbers before 3.6 allow remote attackers to execute arbitrary code or cause a denial of ser...
How severe is CVE-2015-7033?
CVE-2015-7033 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-7033?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Numbers, Apple Pages, Apple Keynote, Apple Iwork.