What is the severity of CVE-2012-3738?

CVE-2012-3738 has a severity rating of medium due to its potential to allow attackers to bypass access restrictions.

How do I fix CVE-2012-3738?

To fix CVE-2012-3738, users should upgrade to iOS version 6 or later.

Who is affected by CVE-2012-3738?

CVE-2012-3738 affects all versions of Apple iOS prior to version 6.

What are the consequences of CVE-2012-3738?

The consequences of CVE-2012-3738 include the ability for attackers to make FaceTime calls or access contact information without proper authorization.

What specific devices are vulnerable to CVE-2012-3738?

Devices running iOS versions from 1.0.0 up to 5.1.1 are vulnerable to CVE-2012-3738.

Vulnerability/
CVE-2012-3738

low

3.6

CWE

264

20/9/2012

6/8/2024

CVE-2012-3738

First published: Thu Sep 20 2012(Updated: )

The Emergency Dialer screen in the Passcode Lock implementation in Apple iOS before 6 does not properly limit the dialing methods, which allows physically proximate attackers to bypass intended access restrictions and make FaceTime calls through Voice Dialing, or obtain sensitive contact information by attempting to make a FaceTime call and reading the contact suggestions.

Credit: product-security@apple.com

Affected Software	Affected Version	How to fix
Apple iPhone OS	<=5.1.1
Apple iPhone OS	=1.0.0
Apple iPhone OS	=1.0.1
Apple iPhone OS	=1.0.2
Apple iPhone OS	=1.1.0
Apple iPhone OS	=1.1.1
Apple iPhone OS	=1.1.2
Apple iPhone OS	=1.1.3
Apple iPhone OS	=1.1.4
Apple iPhone OS	=1.1.5
Apple iPhone OS	=2.0
Apple iPhone OS	=2.0.1
Apple iPhone OS	=2.0.2
Apple iPhone OS	=2.1
Apple iPhone OS	=2.1.1
Apple iPhone OS	=2.2
Apple iPhone OS	=2.2.1
Apple iPhone OS	=3.0
Apple iPhone OS	=3.0.1
Apple iPhone OS	=3.1
Apple iPhone OS	=3.1.2
Apple iPhone OS	=3.1.3
Apple iPhone OS	=3.2
Apple iPhone OS	=3.2.1
Apple iPhone OS	=3.2.2
Apple iPhone OS	=4.0
Apple iPhone OS	=4.0.1
Apple iPhone OS	=4.0.2
Apple iPhone OS	=4.1
Apple iPhone OS	=4.2.1
Apple iPhone OS	=4.2.5
Apple iPhone OS	=4.2.8
Apple iPhone OS	=4.3.0
Apple iPhone OS	=4.3.1
Apple iPhone OS	=4.3.2
Apple iPhone OS	=4.3.3
Apple iPhone OS	=4.3.5
Apple iPhone OS	=5.0
Apple iPhone OS	=5.0.1
Apple iPhone OS	=5.1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-3738?
CVE-2012-3738 has a severity rating of medium due to its potential to allow attackers to bypass access restrictions.
How do I fix CVE-2012-3738?
To fix CVE-2012-3738, users should upgrade to iOS version 6 or later.
Who is affected by CVE-2012-3738?
CVE-2012-3738 affects all versions of Apple iOS prior to version 6.
What are the consequences of CVE-2012-3738?
The consequences of CVE-2012-3738 include the ability for attackers to make FaceTime calls or access contact information without proper authorization.
What specific devices are vulnerable to CVE-2012-3738?
Devices running iOS versions from 1.0.0 up to 5.1.1 are vulnerable to CVE-2012-3738.

collector/nvd-index
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/weakness
agent/severity
agent/last-modified-date
agent/references
agent/description
agent/first-publish-date
agent/event
agent/tags
agent/source
vendor/apple
canonical/apple iphone os
version/apple iphone os/5.1.1
version/apple iphone os/1.0.0
version/apple iphone os/1.0.1
version/apple iphone os/1.0.2
version/apple iphone os/1.1.0
version/apple iphone os/1.1.1
version/apple iphone os/1.1.2
version/apple iphone os/1.1.3
version/apple iphone os/1.1.4
version/apple iphone os/1.1.5
version/apple iphone os/2.0
version/apple iphone os/2.0.1
version/apple iphone os/2.0.2
version/apple iphone os/2.1
version/apple iphone os/2.1.1
version/apple iphone os/2.2
version/apple iphone os/2.2.1
version/apple iphone os/3.0
version/apple iphone os/3.0.1
version/apple iphone os/3.1
version/apple iphone os/3.1.2
version/apple iphone os/3.1.3
version/apple iphone os/3.2
version/apple iphone os/3.2.1
version/apple iphone os/3.2.2
version/apple iphone os/4.0
version/apple iphone os/4.0.1
version/apple iphone os/4.0.2
version/apple iphone os/4.1
version/apple iphone os/4.2.1
version/apple iphone os/4.2.5
version/apple iphone os/4.2.8
version/apple iphone os/4.3.0
version/apple iphone os/4.3.1
version/apple iphone os/4.3.2
version/apple iphone os/4.3.3
version/apple iphone os/4.3.5
version/apple iphone os/5.0
version/apple iphone os/5.0.1
version/apple iphone os/5.1

Frequently Asked Questions

What is the severity of CVE-2012-3738?
CVE-2012-3738 has a severity rating of medium due to its potential to allow attackers to bypass access restrictions.
How do I fix CVE-2012-3738?
To fix CVE-2012-3738, users should upgrade to iOS version 6 or later.
Who is affected by CVE-2012-3738?
CVE-2012-3738 affects all versions of Apple iOS prior to version 6.
What are the consequences of CVE-2012-3738?
The consequences of CVE-2012-3738 include the ability for attackers to make FaceTime calls or access contact information without proper authorization.
What specific devices are vulnerable to CVE-2012-3738?
Devices running iOS versions from 1.0.0 up to 5.1.1 are vulnerable to CVE-2012-3738.

CVE-2012-3738

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-3738?

How do I fix CVE-2012-3738?

Who is affected by CVE-2012-3738?

What are the consequences of CVE-2012-3738?

What specific devices are vulnerable to CVE-2012-3738?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2012-3738?

How do I fix CVE-2012-3738?

Who is affected by CVE-2012-3738?

What are the consequences of CVE-2012-3738?

What specific devices are vulnerable to CVE-2012-3738?