Sign-up

ID

VAR-201704-0004


CVE

CVE-2010-1776


TITLE

Apple iOS of Find My iPhone Device wipe vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2010-005707

DESCRIPTION

Find My iPhone on iOS 2.0 through 3.1.3 for iPhone 3G and later and iOS 2.1 through 3.1.3 for iPod touch (2nd generation) and later, when Find My iPhone is disabled, allows remote authenticated users with an associated MobileMe account to wipe the device. Find My iPhone is one of the components that provides the function of recovering an accidentally lost iPhone. An attacker could exploit this vulnerability to wipe data on the device

Trust: 1.71

sources: NVD: CVE-2010-1776 // JVNDB: JVNDB-2010-005707 // VULHUB: VHN-44381

AFFECTED PRODUCTS

vendor:applemodel:iphone osscope:eqversion:2.2

Trust: 1.6

vendor:applemodel:iphone osscope:eqversion:2.2.1

Trust: 1.6

vendor:applemodel:iphone osscope:eqversion:3.0.1

Trust: 1.6

vendor:applemodel:iphone osscope:eqversion:2.1

Trust: 1.6

vendor:applemodel:iphone osscope:eqversion:3.0

Trust: 1.6

vendor:applemodel:iphone osscope:eqversion:3.1.3

Trust: 1.6

vendor:applemodel:iphone osscope:eqversion:2.1.1

Trust: 1.6

vendor:applemodel:iphone osscope:eqversion:3.1

Trust: 1.6

vendor:applemodel:iphone osscope:eqversion:3.1.2

Trust: 1.6

vendor:applemodel:iosscope:eqversion:2.0 to 3.1.3 (iphone 3g or later )

Trust: 0.8

vendor:applemodel:iosscope:eqversion:2.1 to 3.1.3 (ipod touch first 2 after generation )

Trust: 0.8

sources: JVNDB: JVNDB-2010-005707 // CNNVD: CNNVD-201704-1347 // NVD: CVE-2010-1776

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2010-1776
value: MEDIUM

Trust: 1.0

NVD: CVE-2010-1776
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201704-1347
value: MEDIUM

Trust: 0.6

VULHUB: VHN-44381
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2010-1776
severity: MEDIUM
baseScore: 4.9
vectorString: AV:N/AC:H/AU:S/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: HIGH
authentication: SINGLE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-44381
severity: MEDIUM
baseScore: 4.9
vectorString: AV:N/AC:H/AU:S/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: HIGH
authentication: SINGLE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2010-1776
baseSeverity: MEDIUM
baseScore: 4.8
vectorString: CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H
attackVector: NETWORK
attackComplexity: HIGH
privilegesRequired: LOW
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 1.2
impactScore: 3.6
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-44381 // JVNDB: JVNDB-2010-005707 // CNNVD: CNNVD-201704-1347 // NVD: CVE-2010-1776

PROBLEMTYPE DATA

problemtype:CWE-254

Trust: 1.9

sources: VULHUB: VHN-44381 // JVNDB: JVNDB-2010-005707 // NVD: CVE-2010-1776

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201704-1347

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201704-1347

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2010-005707

PATCH
title:Apple セキュリティアップデート (2010) についてurl:https://support.apple.com/ja-jp/HT5165
Trust: 0.8
title:HT4225url:https://support.apple.com/en-us/HT4225
Trust: 0.8
title:HT4225url:https://support.apple.com/ja-jp/HT4225
Trust: 0.8
title:Apple iPhone  and iPod touch iOS Find My iPhone Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=69723
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2010-005707 // 
            
            
            
            CNNVD: CNNVD-201704-1347

EXTERNAL IDS
db:NVDid:CVE-2010-1776
Trust: 2.5
db:JVNDBid:JVNDB-2010-005707
Trust: 0.8
db:CNNVDid:CNNVD-201704-1347
Trust: 0.7
db:VULHUBid:VHN-44381
Trust: 0.1
sources:
            
            
            VULHUB: VHN-44381 // 
            
            
            
            JVNDB: JVNDB-2010-005707 // 
            
            
            
            CNNVD: CNNVD-201704-1347 // 
            
            
            
            NVD: CVE-2010-1776

REFERENCES
url:https://support.apple.com/en-us/ht4225
Trust: 1.7
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-1776
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2010-1776
Trust: 0.8
sources:
            
            
            VULHUB: VHN-44381 // 
            
            
            
            JVNDB: JVNDB-2010-005707 // 
            
            
            
            CNNVD: CNNVD-201704-1347 // 
            
            
            
            NVD: CVE-2010-1776

SOURCES
db:VULHUBid:VHN-44381
db:JVNDBid:JVNDB-2010-005707
db:CNNVDid:CNNVD-201704-1347
db:NVDid:CVE-2010-1776

LAST UPDATE DATE
2025-04-20T23:16:11.970000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-44381date:2017-05-09T00:00:00
db:JVNDBid:JVNDB-2010-005707date:2017-05-31T00:00:00
db:CNNVDid:CNNVD-201704-1347date:2017-05-09T00:00:00
db:NVDid:CVE-2010-1776date:2025-04-20T01:37:25.860

SOURCES RELEASE DATE
db:VULHUBid:VHN-44381date:2017-04-24T00:00:00
db:JVNDBid:JVNDB-2010-005707date:2017-05-31T00:00:00
db:CNNVDid:CNNVD-201704-1347date:2017-04-24T00:00:00
db:NVDid:CVE-2010-1776date:2017-04-24T19:59:00.160