CVE-2014-4352

Address Book in Apple iOS before 8 relies on the hardware UID for its encryption key, which makes it easier for physically proximate attackers to obtain sensitive information by obtaining this UID.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
2.1 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
appleCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 12%
VendorProductVersion
appleiphone_os
𝑥
≤ 7.1.2
appleiphone_os
7.0
appleiphone_os
7.0.1
appleiphone_os
7.0.2
appleiphone_os
7.0.3
appleiphone_os
7.0.4
appleiphone_os
7.0.5
appleiphone_os
7.0.6
appleiphone_os
7.1
appleiphone_os
7.1.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html
http://support.apple.com/kb/HT6441
http://www.securityfocus.com/bid/69882
http://www.securityfocus.com/bid/69932
http://www.securitytracker.com/id/1030866
https://exchange.xforce.ibmcloud.com/vulnerabilities/96084
http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html
http://support.apple.com/kb/HT6441
http://www.securityfocus.com/bid/69882
http://www.securityfocus.com/bid/69932
http://www.securitytracker.com/id/1030866
https://exchange.xforce.ibmcloud.com/vulnerabilities/96084