Details of VAR-201508-0400

ID

VAR-201508-0400

CVE

CVE-2015-3756

TITLE

Apple iOS of Certificate UI Vulnerabilities that can establish trust with arbitrary certificates

Trust: 0.8

sources: JVNDB: JVNDB-2015-004214

DESCRIPTION

The Certificate UI in Apple iOS before 8.4.1 does not prevent X.509 certificate acceptance within the lock screen, which allows physically proximate attackers to establish arbitrary certificate trust relationships by completing a dialog. Supplementary information : CWE Vulnerability type by CWE-254: Security Features ( Security function ) Has been identified. Apple iOS is prone to multiple security vulnerabilities. Attackers can exploit these issues to access sensitive information, perform unauthorized actions, bypass security restrictions, and perform other attacks. Versions prior to iOS 8.4.1 are vulnerable. Note: The issue described by CVE-2015-3778 has been removed. The issue is discussed in BID 83590 (Apple Mac OS X and iOS CVE-2015-3778 Information Disclosure Vulnerability). Apple iOS is an operating system developed by Apple (Apple) for mobile devices. The vulnerability stems from the fact that the program does not restrict the reception of X.509 certificates during the lock screen period

Trust: 1.98

sources: NVD: CVE-2015-3756 // JVNDB: JVNDB-2015-004214 // BID: 76337 // VULHUB: VHN-81717

AFFECTED PRODUCTS

vendor:	apple	model:	iphone os	scope:	lte	version:	8.4	Trust: 1.0
vendor:	apple	model:	ios	scope:	lt	version:	8.4.1 (ipad 2 or later )	Trust: 0.8
vendor:	apple	model:	ios	scope:	lt	version:	8.4.1 (iphone 4s or later )	Trust: 0.8
vendor:	apple	model:	ios	scope:	lt	version:	8.4.1 (ipod touch first 5 after generation )	Trust: 0.8
vendor:	apple	model:	iphone os	scope:	eq	version:	8.4	Trust: 0.6
vendor:	apple	model:	ipod touch	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	iphone	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	ipad	scope:	eq	version:	0	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.0.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.0.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	5.1.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	5.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	5.0.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	5	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.5	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.4	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.3	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.3	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.9	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.8	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.7	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.6	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.5	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2.10	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	4	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.2	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.1	Trust: 0.3
vendor:	apple	model:	ios	scope:	eq	version:	3.0	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	5.0	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	4.4	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	4.3	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	4.2	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	4.1	Trust: 0.3
vendor:	apple	model:	tv	scope:	eq	version:	4.0	Trust: 0.3

sources: BID: 76337 // JVNDB: JVNDB-2015-004214 // CNNVD: CNNVD-201508-226 // NVD: CVE-2015-3756

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2015-3756
value:	LOW
Trust: 1.0
NVD:	CVE-2015-3756
value:	LOW
Trust: 0.8
CNNVD:	CNNVD-201508-226
value:	LOW
Trust: 0.6
VULHUB:	VHN-81717
value:	LOW
Trust: 0.1

nvd@nist.gov:	CVE-2015-3756
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:N/I:P/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-81717
severity:	LOW
baseScore:	2.1
vectorString:	AV:L/AC:L/AU:N/C:N/I:P/A:N
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-81717 // JVNDB: JVNDB-2015-004214 // CNNVD: CNNVD-201508-226 // NVD: CVE-2015-3756

PROBLEMTYPE DATA

problemtype:	CWE-254	Trust: 1.1
problemtype:	CWE-Other	Trust: 0.8

sources: VULHUB: VHN-81717 // JVNDB: JVNDB-2015-004214 // NVD: CVE-2015-3756

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201508-226

TYPE

Unknown

Trust: 0.3

sources: BID: 76337

CONFIGURATIONS

sources: JVNDB: JVNDB-2015-004214

PATCH

title:	Apple security updates	url:	http://support.apple.com/en-us/HT1222	Trust: 0.8
title:	APPLE-SA-2015-08-13-3 iOS 8.4.1	url:	http://lists.apple.com/archives/security-announce/2015/Aug/msg00002.html	Trust: 0.8
title:	HT205030	url:	http://support.apple.com/en-us/HT205030	Trust: 0.8
title:	HT205030	url:	http://support.apple.com/ja-jp/HT205030	Trust: 0.8

sources: JVNDB: JVNDB-2015-004214

EXTERNAL IDS

db:	NVD	id:	CVE-2015-3756	Trust: 2.8
db:	BID	id:	76337	Trust: 2.0
db:	SECTRACK	id:	1033275	Trust: 1.1
db:	JVN	id:	JVNVU94440136	Trust: 0.8
db:	JVNDB	id:	JVNDB-2015-004214	Trust: 0.8
db:	CNNVD	id:	CNNVD-201508-226	Trust: 0.7
db:	VULHUB	id:	VHN-81717	Trust: 0.1

sources: VULHUB: VHN-81717 // BID: 76337 // JVNDB: JVNDB-2015-004214 // CNNVD: CNNVD-201508-226 // NVD: CVE-2015-3756

REFERENCES

url:	http://lists.apple.com/archives/security-announce/2015/aug/msg00002.html	Trust: 1.7
url:	http://www.securityfocus.com/bid/76337	Trust: 1.7
url:	https://support.apple.com/kb/ht205030	Trust: 1.7
url:	http://www.securitytracker.com/id/1033275	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-3756	Trust: 0.8
url:	http://jvn.jp/vu/jvnvu94440136/index.html	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-3756	Trust: 0.8
url:	http://www.apple.com/ios/	Trust: 0.3
url:	http://www.apple.com/ipad/	Trust: 0.3
url:	http://www.apple.com/iphone/	Trust: 0.3
url:	http://www.apple.com/ipodtouch/	Trust: 0.3

sources: VULHUB: VHN-81717 // BID: 76337 // JVNDB: JVNDB-2015-004214 // CNNVD: CNNVD-201508-226 // NVD: CVE-2015-3756

CREDITS

evad3rs, TaiG Jailbreak Team, Cererdlong of Alibaba Mobile Security Team, Phillip Moon and Matt Weston of Sandfield, TaiG Jailbreak Team, FireEye, Proteas of Qihoo 360 Nirvan Team, Piers O'Hanlon of Oxford Internet Institute, University of Oxford (on the

Trust: 0.6

sources: CNNVD: CNNVD-201508-226

SOURCES

db:	VULHUB	id:	VHN-81717
db:	BID	id:	76337
db:	JVNDB	id:	JVNDB-2015-004214
db:	CNNVD	id:	CNNVD-201508-226
db:	NVD	id:	CVE-2015-3756

LAST UPDATE DATE

2025-04-13T19:38:04.226000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-81717	date:	2016-12-24T00:00:00
db:	BID	id:	76337	date:	2016-07-05T21:35:00
db:	JVNDB	id:	JVNDB-2015-004214	date:	2015-08-20T00:00:00
db:	CNNVD	id:	CNNVD-201508-226	date:	2015-08-17T00:00:00
db:	NVD	id:	CVE-2015-3756	date:	2025-04-12T10:46:40.837

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-81717	date:	2015-08-16T00:00:00
db:	BID	id:	76337	date:	2015-08-13T00:00:00
db:	JVNDB	id:	JVNDB-2015-004214	date:	2015-08-20T00:00:00
db:	CNNVD	id:	CNNVD-201508-226	date:	2015-08-17T00:00:00
db:	NVD	id:	CVE-2015-3756	date:	2015-08-16T23:59:29.533