CVE-2014-4352

EUVD-2014-4279
Address Book in Apple iOS before 8 relies on the hardware UID for its encryption key, which makes it easier for physically proximate attackers to obtain sensitive information by obtaining this UID.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
2.1 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 12%
Affected Products (NVD)
VendorProductVersion
appleiphone_os
𝑥
≤ 7.1.2
appleiphone_os
7.0
appleiphone_os
7.0.1
appleiphone_os
7.0.2
appleiphone_os
7.0.3
appleiphone_os
7.0.4
appleiphone_os
7.0.5
appleiphone_os
7.0.6
appleiphone_os
7.1
appleiphone_os
7.1.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html
http://support.apple.com/kb/HT6441
http://www.securityfocus.com/bid/69882
http://www.securityfocus.com/bid/69932
http://www.securitytracker.com/id/1030866
https://exchange.xforce.ibmcloud.com/vulnerabilities/96084
http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html
http://support.apple.com/kb/HT6441
http://www.securityfocus.com/bid/69882
http://www.securityfocus.com/bid/69932
http://www.securitytracker.com/id/1030866
https://exchange.xforce.ibmcloud.com/vulnerabilities/96084