Unrated severityNVD Advisory· Published Sep 10, 2009· Updated Jun 16, 2026
CVE-2009-2795
CVE-2009-2795
Description
Heap-based buffer overflow in the Recovery Mode component in Apple iPhone OS before 3.1, and iPhone OS before 3.1.1 for iPod touch, allows local users to bypass the passcode requirement and access arbitrary data via vectors related to "command parsing."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*range: <3.1
- cpe:2.3:o:apple:iphone_os:*:*:*:*:*:ipod_touch:*:*range: <3.1.1
- (no CPE)range: <3.1
Patches
Vulnerability mechanics
References
5- lists.apple.com/archives/security-announce/2009/Sep/msg00001.htmlnvdMailing ListPatchVendor Advisory
- support.apple.com/kb/HT3860nvdPatchVendor Advisory
- secunia.com/advisories/36677nvdVendor Advisory
- www.securityfocus.com/bid/36341nvdThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/53183nvdVDB Entry
News mentions
0No linked articles in our index yet.