CVE-2008-4593
Severity CVSS v4.0:
Pending analysis
Type:
CWE-200
Information Leak / Disclosure
Publication date:
17/10/2008
Last modified:
09/04/2025
Description
Apple iPhone 2.1 with firmware 5F136, when Require Passcode is enabled and Show SMS Preview is disabled, allows physically proximate attackers to obtain sensitive information by performing an Emergency Call tap and then reading SMS messages on the device screen, aka Apple bug number 6267416.
Impact
Base Score 2.0
1.20
Severity 2.0
LOW
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:h:apple:iphone:2.1:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://securitytracker.com/id?1021021=
- http://www.karlkraft.com/index.php/2008/10/03/yet-another-iphone-emergency-call-security-bug/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46062
- http://securitytracker.com/id?1021021=
- http://www.karlkraft.com/index.php/2008/10/03/yet-another-iphone-emergency-call-security-bug/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/46062