CVE-2014-1355Apple Iphone OS vulnerability

2 documents2 sources
Severity
4.9MEDIUMNVD
EPSS
0.1%
top 80.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Apple Iphone OSApple TvosApple MAC OS X
Timeline
PublishedJul 1
Latest updateMay 14

Description

The IOKit implementation in the kernel in Apple iOS before 7.1.2 and Apple TV before 6.1.2, and in IOReporting in Apple OS X before 10.9.4, allows local users to cause a denial of service (NULL pointer dereference and reboot) via crafted API arguments.

CVSS vector

AV:L/AC:L/C:N/I:N/A:CExploitability: 3.9 | Impact: 6.9

Affected Packages3 packages

NVDapple/tvos6.1.1+4
NVDapple/iphone_os7.1.1+8
NVDapple/mac_os_x4 versions+3

🔴Vulnerability Details

1
GHSA
GHSA-3m85-g3rf-6h9x: The IOKit implementation in the kernel in Apple iOS before 72022-05-14