Vulnerability Description
In Apple iOS 7 through 9, due to a BlueBorne flaw in the implementation of LEAP (Low Energy Audio Protocol), a large audio command can be sent to a targeted device and lead to a heap overflow with attacker-controlled data. Since the audio commands sent via LEAP are not properly validated, an attacker can use this overflow to gain full control of the device through the relatively high privileges of the Bluetooth stack in iOS. The attack bypasses Bluetooth access control; however, the default "Bluetooth On" value must be present in Settings.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Iphone Os | 7.0 |
Related Weaknesses (CWE)
References
- http://seclists.org/fulldisclosure/2019/May/24
- http://www.securityfocus.com/bid/100816Third Party AdvisoryVDB Entry
- https://seclists.org/bugtraq/2019/May/30
- https://support.apple.com/kb/HT210121
- https://www.armis.com/blueborneTechnical DescriptionThird Party Advisory
- http://seclists.org/fulldisclosure/2019/May/24
- http://www.securityfocus.com/bid/100816Third Party AdvisoryVDB Entry
- https://seclists.org/bugtraq/2019/May/30
- https://support.apple.com/kb/HT210121
- https://www.armis.com/blueborneTechnical DescriptionThird Party Advisory
FAQ
What is CVE-2017-14315?
CVE-2017-14315 is a vulnerability with a CVSS score of 7.5 (HIGH). In Apple iOS 7 through 9, due to a BlueBorne flaw in the implementation of LEAP (Low Energy Audio Protocol), a large audio command can be sent to a targeted device and lead to a heap overflow with att...
How severe is CVE-2017-14315?
CVE-2017-14315 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-14315?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Iphone Os.