CVE-2014-4407 in Mac OS Xinfo

Summary

IOKit in Apple iOS before 8 and Apple TV before 7 does not properly initialize kernel memory, which allows attackers to obtain sensitive memory-content information via an application that makes crafted IOKit function calls.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

06/20/2014

Disclosure

09/18/2014

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
68012	Apple Mac OS X IOKit uninitialized pointer	824	Not defined	Official fix	CVE-2014-4407
67583	Apple iOS IOKit information disclosure	200	Not defined	Official fix	CVE-2014-4407

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!