| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 5.9 | $0-$5k | 0.00 |
Summary
A vulnerability, which was classified as critical, has been found in Apple iOS up to 8.1.2. Affected by this vulnerability is an unknown functionality of the component libnetcore. Performing a manipulation results in data processing. This vulnerability is reported as CVE-2014-4492. Moreover, an exploit is present. It is advisable to upgrade the affected component.
Details
A vulnerability was found in Apple iOS up to 8.1.2 (Smartphone Operating System). It has been classified as critical. This affects an unknown functionality of the component libnetcore. The manipulation with an unknown input leads to a data processing vulnerability. CWE is classifying the issue as CWE-19. This is going to have an impact on confidentiality, and integrity.
The weakness was disclosed 01/27/2015 by Ian Beer (PanguTeam) with Google Project Zero as HT204245 as confirmed advisory (Website). The advisory is shared at support.apple.com. This vulnerability is uniquely identified as CVE-2014-4492 since 06/20/2014. It is possible to initiate the attack remotely. No form of authentication is needed for exploitation. Technical details are unknown but a public exploit is available. The advisory points out:
Multiple type confusion issues existed in networkd's handling of interprocess communication. By sending a maliciously formatted message to networkd, it may have been possible to execute arbitrary code as the networkd process. The issue is addressed throug
A public exploit has been developed by Google Security Research and been published before and not just after the advisory. The exploit is shared for download at exploit-db.com. It is declared as proof-of-concept. The vulnerability was handled as a non-public zero-day exploit for at least 7 days. During that time the estimated underground price was around $100k and more. The vulnerability scanner Nessus provides a plugin with the ID 81145 (Apple TV < 7.0.3 Multiple Vulnerabilities), which helps to determine the existence of the flaw in a target environment. It is assigned to the family Misc.. The commercial vulnerability scanner Qualys is able to test this issue with plugin 123193 (Apple Mac OS X v10.10.2 and Security Update 2015-001 Not Installed (APPLE-SA-2015-01-27-4)).
Upgrading to version 8.1.3 eliminates this vulnerability. A possible mitigation has been published immediately after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at Exploit-DB (35847), Tenable (81145), SecurityFocus (BID 72327†), OSVDB (114862†) and Vulnerability Center (SBV-48345†). Further details are available at us-cert.gov. The entries VDB-67778, VDB-68077, VDB-68232 and VDB-68339 are pretty similar. Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
Product
Type
Vendor
Name
Version
License
Website
- Vendor: https://www.apple.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 6.5VulDB Meta Temp Score: 5.9
VulDB Base Score: 6.5
VulDB Temp Score: 5.9
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Data processingCWE: CWE-19
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Access: Public
Status: Proof-of-Concept
Author: Google Security Research
Download: 🔍
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 81145
Nessus Name: Apple TV < 7.0.3 Multiple Vulnerabilities
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Exploit-DB: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Upgrade: iOS 8.1.3
Timeline
06/20/2014 🔍01/20/2015 🔍
01/20/2015 🔍
01/20/2015 🔍
01/27/2015 🔍
01/27/2015 🔍
01/27/2015 🔍
01/28/2015 🔍
01/29/2015 🔍
01/30/2015 🔍
12/16/2024 🔍
Sources
Vendor: apple.comAdvisory: HT204245
Researcher: Ian Beer (PanguTeam)
Organization: Google Project Zero
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2014-4492 (🔍)
GCVE (CVE): GCVE-0-2014-4492
GCVE (VulDB): GCVE-100-68937
SecurityFocus: 72327 - Multiple Apple Products Multiple Security Vulnerabilities
OSVDB: 114862
SecuriTeam: 1031652
Vulnerability Center: 48345 - Apple iOS before 8.1.3 Remote Code Execution via Sending a Maliciously Formatted Message to \x27networkd\x27 - CVE-2014-4492, High
scip Labs: https://www.scip.ch/en/?labs.20150917
Misc.: 🔍
See also: 🔍
Entry
Created: 01/29/2015 15:41Updated: 12/16/2024 04:22
Changes: 01/29/2015 15:41 (66), 06/19/2017 08:02 (19), 03/07/2022 19:18 (3), 03/07/2022 19:26 (1), 12/16/2024 04:22 (16)
Complete: 🔍
Cache ID: 216:DA1:103
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
No comments yet. Languages: en.
Please log in to comment.