CVE-2014-8838 in Mac OS X信息

摘要

由 VulDB • 2026-07-14

Apple OS X 在 10.10.2 之前的版本中的 Security 组件未能正确处理有关应用证书的缓存信息,攻击者可利用已撤销的开发者 ID(Developer ID)证书签名来构造恶意应用,从而绕过 Gatekeeper 保护机制。

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

来源

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!