Security Advisory

CVE-2012-3741

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2012-09-20 21:00:00

Last updated 2024-08-06 20:13:51

Assigner apple

State PUBLISHED

Description

The Restrictions (aka Parental Controls) implementation in Apple iOS before 6 does not properly handle purchase attempts after a Disable Restrictions action, which allows local users to bypass an intended Apple ID authentication step via an app that performs purchase transactions.

← Browse all CVEs View on cve.org ↗