CVE-2013-5161
First published: Sat Sep 28 2013(Updated: )
Passcode Lock in Apple iOS before 7.0.2 does not properly manage the lock state, which allows physically proximate attackers to bypass an intended passcode requirement, and open the Camera app or read the list of all recently opened apps, by leveraging unspecified transition errors.
Credit: product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| iPhone OS | <=7.0.1 | |
| iPhone OS | =7.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2013-5161?
CVE-2013-5161 has a severity rating of moderate due to the potential for unauthorized access to device features.
How do I fix CVE-2013-5161?
To fix CVE-2013-5161, update your iOS device to version 7.0.2 or later.
Who is affected by CVE-2013-5161?
CVE-2013-5161 affects Apple iOS versions prior to 7.0.2, including 7.0 and 7.0.1.
What vulnerabilities does CVE-2013-5161 introduce?
CVE-2013-5161 allows physical attackers to bypass the passcode lock and access the Camera app and recent apps.
What are the implications of CVE-2013-5161?
The implications of CVE-2013-5161 include unauthorized access to private information and usage of device features.
- agent/references
- agent/type
- agent/severity
- agent/weakness
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/apple
- canonical/iphone os
- version/iphone os/7.0.1
- version/iphone os/7.0