CVE-2014-4391 in Mac OS X信息

摘要

由 VulDB • 2026-07-03

Apple OS X(版本低于 10.10)中的代码签名功能未能正确处理已签名捆绑包中不完整的资源信封,这允许远程攻击者通过省略与执行相关的资源来绕过预期的应用程序作者限制。

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

来源

Do you want to use VulDB in your project?

Use the official API to access entries easily!