← Back

CVE-2015-1157

nvd nist
Published: May 28, 2015Modified: May 6, 2026

JSON object

Loading...
7.8
Vector
AV:N/AC:L/Au:N/C:N/I:N/A:C
Exploitability: 10.0 / Impact: 6.9
Source: NVD

Description

CoreText in Apple iOS 8.x through 8.3 allows remote attackers to cause a denial of service (reboot and messaging disruption) via crafted Unicode text that is not properly handled during display truncation in the Notifications feature, as demonstrated by Arabic characters in (1) an SMS message or (2) a WhatsApp message.

Affected (10)

Apple
3 products
Iphone Os
Mac Os X
Itunes
Configuration A
8 vulnerable
Vulnerable SoftwareAffected Versions
Apple
Iphone Os
Version 8.0.1
Iphone Os
Version 8.0.2
Iphone Os
Version 8.0
Iphone Os
Version 8.1.2
Iphone Os
Version 8.1.3
Iphone Os
Version 8.1
Iphone Os
Version 8.2
Iphone Os
Version 8.3
Configuration B
1 vulnerable
Vulnerable SoftwareAffected Versions
Mac Os X
Up to 10.0.3
Configuration C
1 vulnerable
Vulnerable SoftwareAffected Versions
Itunes
Up to 12.2

Related CWEs

CWE-17
CWE-17

References (30)

Source: product-security@apple.com
Source: product-security@apple.com
Vendor Advisory
Source: product-security@apple.com
PatchVendor Advisory
Source: product-security@apple.com
PatchVendor Advisory
Source: product-security@apple.com
Vendor Advisory
Source: product-security@apple.com
Vendor Advisory
Source: product-security@apple.com
Source: product-security@apple.com
Exploit
Source: product-security@apple.com
Source: product-security@apple.com
Exploit
Source: product-security@apple.com
Source: product-security@apple.com
Source: product-security@apple.com
Exploit
Source: product-security@apple.com
Source: product-security@apple.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Exploit
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.