CVE-2011-3430

EUVD-2011-3393
The Settings component in Apple iOS before 5, when a configuration profile is used for a locale other than English, does not properly implement localization, which makes it easier for attackers to have an unspecified impact by leveraging incorrect configuration display.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 61%
Affected Products (NVD)
VendorProductVersion
appleiphone_os
3.0
appleiphone_os
3.1
appleiphone_os
3.1
appleiphone_os
3.1
appleiphone_os
3.1.2
appleiphone_os
3.1.3
appleiphone_os
3.2
appleiphone_os
3.2
appleiphone_os
3.2.1
appleiphone_os
3.2.1
appleiphone_os
3.2.2
appleiphone_os
4.0
appleiphone_os
4.0
appleiphone_os
4.0
appleiphone_os
4.0.1
appleiphone_os
4.0.1
appleiphone_os
4.0.1
appleiphone_os
4.0.2
appleiphone_os
4.1
appleiphone_os
4.2.1
appleiphone_os
4.2.5
appleiphone_os
4.2.8
appleiphone_os
4.3.0
appleiphone_os
4.3.1
appleiphone_os
4.3.2
appleiphone_os
4.3.3
appleiphone_os
4.3.5
appleiphone_os
4.3.5
appleiphone_os
4.3.5
𝑥
= Vulnerable software versions
References
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html
http://osvdb.org/76330
http://support.apple.com/kb/HT4999
https://exchange.xforce.ibmcloud.com/vulnerabilities/70560
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00001.html
http://osvdb.org/76330
http://support.apple.com/kb/HT4999
https://exchange.xforce.ibmcloud.com/vulnerabilities/70560