CVE-2014-1354Apple Iphone OS vulnerability

CWE-3992 documents2 sources
Severity
6.8MEDIUMNVD
EPSS
1.3%
top 20.07%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Iphone OS
Timeline
PublishedJul 1
Latest updateMay 17

Description

CoreGraphics in Apple iOS before 7.1.2 does not properly restrict allocation of stack memory for processing of XBM images, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted image data.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

NVDapple/iphone_os7.1.1+8

🔴Vulnerability Details

1
GHSA
GHSA-8v7j-mrfp-6rp4: CoreGraphics in Apple iOS before 72022-05-17
CVE-2014-1354 — Apple Iphone OS vulnerability | cvebase