CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2009-2796

The UIKit component in Apple iPhone OS 3.0, and iPhone OS 3.0.1 for iPod touch, allows physically proximate attackers to discover a password by watching a user undo deletions of characters in the password.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.3%

CVSS Severity

CVSS v2 Score 2.1

References

http://lists.apple.com/archives/security-announce/2009/Sep/msg00001.html
http://secunia.com/advisories/36677
http://support.apple.com/kb/HT3860
http://www.securityfocus.com/bid/36335
https://exchange.xforce.ibmcloud.com/vulnerabilities/53185
http://lists.apple.com/archives/security-announce/2009/Sep/msg00001.html
http://secunia.com/advisories/36677
http://support.apple.com/kb/HT3860
http://www.securityfocus.com/bid/36335
https://exchange.xforce.ibmcloud.com/vulnerabilities/53185

Products affected by CVE-2009-2796

Apple » Iphone Os » Version: 3.0

cpe:2.3:o:apple:iphone_os:3.0
Apple » Iphone Os » Version: 3.0.1

cpe:2.3:o:apple:iphone_os:3.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-2796

Products

Pricing

Contact Us