CVE-2008-4593

medium

Description

Apple iPhone 2.1 with firmware 5F136, when Require Passcode is enabled and Show SMS Preview is disabled, allows physically proximate attackers to obtain sensitive information by performing an Emergency Call tap and then reading SMS messages on the device screen, aka Apple bug number 6267416.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/46062

http://www.karlkraft.com/index.php/2008/10/03/yet-another-iphone-emergency-call-security-bug/

http://securitytracker.com/id?1021021

Details

Source: Mitre, NVD

Published: 2008-10-17

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 1.2

Vector: CVSS2#AV:L/AC:H/Au:N/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 4.6

Vector: CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: Medium

EPSS

EPSS: 0.00062