Unrated severityNVD Advisory· Published Apr 10, 2015· Updated May 6, 2026

CVE-2015-1092

Description

NSXMLParser in Foundation in Apple iOS before 8.3 and Apple TV before 7.2 allows remote attackers to read arbitrary files via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

XXE vulnerability in NSXMLParser on iOS <8.3 and Apple TV <7.2 allows remote attackers to read arbitrary files.

Vulnerability

An XML External Entity (XXE) issue exists in NSXMLParser in the Foundation framework on Apple iOS versions prior to 8.3 and Apple TV versions prior to 7.2 [1][2]. The parser incorrectly handles external entity declarations, allowing them to be resolved when an entity reference is encountered. This enables a remote attacker to read arbitrary files on the affected device.

Exploitation

An attacker can exploit this vulnerability by delivering a crafted XML payload containing an external entity declaration and a corresponding entity reference to an application that uses NSXMLParser. The attack can be remote, and no authentication is required. User interaction (e.g., opening a malicious document or visiting a webpage) may be necessary to trigger parsing of the malicious XML.

Impact

Successful exploitation leads to information disclosure. An attacker can read arbitrary files from the device's filesystem, potentially including sensitive data such as credentials, configuration files, or personal information. The impact is limited to reading files; the attacker does not gain code execution or system-level privileges directly through this vulnerability.

Mitigation

Apple addressed this issue in iOS 8.3 and Apple TV 7.2 by modifying NSXMLParser to not load external entities across origins [1][2]. Users should update their devices to the latest available versions. No workaround is provided for unpatched versions.

References

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Apple Inc./Iphone Os
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
Range: <=8.2
Apple Inc./tvOS
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
Range: <=7.1
Apple Inc./iOSllm-fuzzy
Range: <8.3
Apple Inc./TVllm-fuzzy
Range: <7.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.apple.com/archives/security-announce/2015/Apr/msg00002.htmlnvdVendor Advisory
lists.apple.com/archives/security-announce/2015/Apr/msg00003.htmlnvdVendor Advisory
support.apple.com/HT204661nvdVendor Advisory
support.apple.com/HT204662nvdVendor Advisory
www.securityfocus.com/bid/73983nvd
www.securitytracker.com/id/1032050nvd
support.apple.com/kb/HT204870nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000