Published: 18/09/2014 Updated: 08/03/2019

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

The IOHIDFamily kernel extension in Apple iOS prior to 8 and Apple TV prior to 7 lacks proper bounds checking on write operations, which allows malicious users to execute arbitrary code in the kernel's context via a crafted application.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple tvos
apple tvos 6.1.2
apple tvos 6.1.1
apple tvos 6.1
apple tvos 6.0.2
apple tvos 6.0.1
apple tvos 6.0
apple iphone os 7.0.6
apple iphone os 7.1
apple iphone os
apple iphone os 7.0.5
apple iphone os 7.0.4
apple iphone os 7.0.3
apple iphone os 7.0.2
apple iphone os 7.0.1
apple iphone os 7.0
apple iphone os 7.1.1
apple mac os x

CWE-119 http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html http://archives.neohapsis.com/archives/bugtraq/2014-09/0107.html http://archives.neohapsis.com/archives/bugtraq/2014-10/0101.html https://support.apple.com/kb/HT6535 https://support.apple.com/HT204659 http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html http://www.securitytracker.com/id/1030866 http://www.securityfocus.com/bid/69942 http://www.securityfocus.com/bid/69882 http://support.apple.com/kb/HT6442 http://support.apple.com/kb/HT6441 https://exchange.xforce.ibmcloud.com/vulnerabilities/96110 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-4380

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect