CVE-2014-4421 in Mac OS Xinfo

Summary

The network-statistics interface in the kernel in Apple iOS before 8 and Apple TV before 7 does not properly initialize memory, which allows attackers to obtain sensitive memory-content and memory-layout information via a crafted application, a different vulnerability than CVE-2014-4371, CVE-2014-4419, and CVE-2014-4420.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

06/20/2014

Disclosure

09/18/2014

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
68897	Apple Mac OS X uninitialized pointer	824	Not defined	Official fix	CVE-2014-4421
68018	Apple Mac OS X uninitialized resource	908	Not defined	Official fix	CVE-2014-4421
67590	Apple iOS information disclosure	200	Not defined	Official fix	CVE-2014-4421

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

◂ PreviousOverviewNext ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!