Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2015-7033

The Apple iWork application before 2.6 for iOS, Apple Keynote before 6.6, Apple Pages before 5.6, and Apple Numbers before 3.6 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted document.

Published

2015-10-18T19:59:05.183

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 6.8 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

8.6

Impact Score

6.4

Weaknesses

Type: Primary
CWE-119

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	apple	numbers	≤ 3.5	Yes
Application	apple	pages	≤ 5.5.3	Yes
Application	apple	keynote	≤ 6.5	Yes
Application	apple	iwork	≤ 2.5.4	Yes

References

http://lists.apple.com/archives/security-announce/2015/Oct/msg00000.html Vendor Advisory ([email protected])
http://www.securitytracker.com/id/1033823 Third Party Advisory, VDB Entry ([email protected])
http://www.securitytracker.com/id/1033825 Third Party Advisory, VDB Entry ([email protected])
http://www.securitytracker.com/id/1033826 Third Party Advisory, VDB Entry ([email protected])
https://support.apple.com/HT205373 Vendor Advisory ([email protected])
http://lists.apple.com/archives/security-announce/2015/Oct/msg00000.html Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1033823 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1033825 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1033826 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/HT205373 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)