http://support.apple.com/kb/HT6162

According to its banner, the remote Apple iOS device is missing a security update.  Versions of Apple iOS prior to 7.1 are affected by vulnerabilities within the following components :

  - Backup
  - Certificate Trust Policy
  - Configuration Profiles
  - CoreCapture
  - Crash Reporting
  - dyld
  - FaceTime
  - ImageIO
  - IOKit HID Event
  - iTunes Store
  - Kernel
  - Office Viewer
  - Photos Backend
  - Profiles
  - Safari
  - Find My iPhone status
  - Springboard
  - SpringBoard Lock Screen
  - TelephonyUI Framework
  - USB Host
  - Video Driver
  - WebKit

The mobile device is running a version of iOS that is prior to version 7.1. It is, therefore, affected by vulnerabilities in the following components :

  - Backup
  - Certificate Trust Policy
  - Configuration Profiles
  - CoreCapture
  - Crash Reporting
  - dyld
  - FaceTime
  - ImageIO
  - IOKit HID Event
  - iTunes Store
  - Kernel
  - Office Viewer
  - Photos Backend
  - Profiles
  - Safari
  - Settings - Accounts
  - Springboard
  - SpringBoard Lock Screen
  - TelephonyUI Framework
  - USB Host
  - Video Driver
  - WebKit

ID	Name	Product	Family	Severity
8155	Apple iOS < 7.1 Multiple Vulnerabilities	Nessus Network Monitor	Mobile Devices	high
72907	Apple iOS < 7.1 Multiple Vulnerabilities	Nessus	Mobile Devices	high

CVE-2014-1285

MEDIUM

Description

References

Details

Risk Information

CVSS v2.0

Vulnerable Software

Configuration 1

Tenable Plugins

high

high