CVE-2012-0645

CVSS 1.2 - LOW

Description

Siri in Apple iOS before 5.1 does not properly restrict the ability of Mail.app to handle voice commands, which allows physically proximate attackers to bypass the locked state via a command that forwards an active e-mail message to an arbitrary recipient.

Affected Products

1

Vendor	Product	Version
apple	iphone_os	`All versions`

References

http://lists.apple.com/archives/security-announce/...

http://secunia.com/advisories/48288

http://www.securitytracker.com/id?1026774

http://lists.apple.com/archives/security-announce/...

http://secunia.com/advisories/48288

http://www.securitytracker.com/id?1026774

Weakness Types

CWE-264

CVE Information

CVE ID:: CVE-2012-0645
Published:: 2012-03-08
Modified:: 2026-04-29
CVSS Score:: 1.2
Severity:: LOW
Vector:: AV:L/AC:H/Au:N/C:N/I:P/A:N

Affected Vendors

apple

Quick Actions

View on NVD Find Similar CVEs

CVSS Severity Scale

0.0 - 3.9 LOW

4.0 - 6.9 MEDIUM

7.0 - 8.9 HIGH

9.0 - 10.0 CRITICAL