CVE-2014-4494 in iOSthông tin

Tóm tắt

Bởi MITRE

Springboard in Apple iOS before 8.1.3 does not properly validate signatures when determining whether to solicit an app trust decision from the user, which allows attackers to bypass intended first-launch restrictions by leveraging access to an enterprise distribution certificate for signing a crafted app.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Đặt trước

20/06/2014

Tiết lộ

30/01/2015

Kiểm duyệt

được chấp nhận

mục

VDB-68939

EPSS

0.00903

KEV

không

Các hoạt động

rất thấp

Nguồn

Interested in the pricing of exploits?

See the underground prices here!