CVE-2014-1300 — Apple Safari vulnerability

4 documents4 sources

Severity

10.0CRITICALNVD

EPSS

8.5%

top 7.60%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Safari

Timeline

PublishedMar 26

Latest updateMay 17

Description

Unspecified vulnerability in Apple Safari 7.0.2 on OS X allows remote attackers to execute arbitrary code with root privileges via unknown vectors, as demonstrated by Google during a Pwn4Fun competition at CanSecWest 2014.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

▶NVDapple/safari7.0.2

🔴Vulnerability Details

GHSA

GHSA-6p5g-6grr-cr2w: Unspecified vulnerability in Apple Safari 7↗2022-05-17

▶

📋Vendor Advisories

Red Hat

webkitgtk: arbitrary code execution with root privileges (WSA-2015-0001)↗2015-01-26

▶

💬Community

Bugzilla

CVE-2014-1300 webkitgtk: arbitrary code execution with root privileges (WSA-2015-0001)↗2015-01-27

▶