CVE-2014-1360Improper Input Validation in Apple Iphone OS

CWE-20Improper Input Validation3 documents3 sources
Severity
2.1LOWNVD
EPSS
0.1%
top 77.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Iphone OS
Timeline
PublishedJul 1
Latest updateMay 17

Description

Lockdown in Apple iOS before 7.1.2 does not properly verify data from activation servers, which makes it easier for physically proximate attackers to bypass the Activation Lock protection mechanism via unspecified vectors.

CVSS vector

AV:L/AC:L/C:N/I:P/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

NVDapple/iphone_os7.1.1+8

🔴Vulnerability Details

1
GHSA
GHSA-5w9m-x99x-rq2w: Lockdown in Apple iOS before 72022-05-17

💥Exploits & PoCs

1
Exploit-DB
Free Download Manager - Stack Buffer Overflow2014-03-17
CVE-2014-1360 — Improper Input Validation in Apple | cvebase