Apple : Security Vulnerabilities, CVEs, Published In September 2012 (Gain Privilege)
The Restrictions (aka Parental Controls) implementation in Apple iOS before 6 does not properly handle purchase attempts after a Disable Restrictions action, which allows local users to bypass an intended Apple ID authentication step via an app that performs purchase transactions.
Max CVSS
1.9
EPSS Score
0.04%
Published
2012-09-20
Updated
2017-08-29
Profile Manager in Apple Mac OS X before 10.7.5 does not properly perform authentication for the Device Management private interface, which allows attackers to enumerate managed devices via unspecified vectors.
Max CVSS
5.0
EPSS Score
0.19%
Published
2012-09-20
Updated
2017-08-29
2 vulnerabilities found