TROYANOSYVIRUS
Retour aux CVEs

CVE-2014-4384

N/A

Description

Directory traversal vulnerability in the App Installation feature in Apple iOS before 8 allows local users to install unverified apps by triggering code-signature validation of an unintended bundle.

Details CVE

Score CVSS v3.1N/A
Publie9/18/2014
Derniere modification4/12/2025
Sourcenvd
Observations honeypot0

Produits affectes

apple:iphone_os

Faiblesses (CWE)

CWE-22

References

http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html(product-security@apple.com)
http://support.apple.com/kb/HT6441(product-security@apple.com)
http://www.securityfocus.com/bid/69882(product-security@apple.com)
http://www.securityfocus.com/bid/69940(product-security@apple.com)
http://www.securitytracker.com/id/1030866(product-security@apple.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/96087(product-security@apple.com)
http://archives.neohapsis.com/archives/bugtraq/2014-09/0106.html(af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT6441(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/69882(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/69940(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1030866(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/96087(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.