CVE-2017-13806

Medium

5.5/10

Summary

An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Profiles" component. It does not enforce the configuration profile's settings for whether pairings are allowed.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: NONE
Confidentiality Impact: NONE
Availability Impact: NONE

References

Advisory Timeline

Published Apr 03, 2018

CVE-2017-13806

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS