CVE-2014-2019 — Unsafe Reflection in Apple Iphone OS

CWE-264 CWE-470 — Unsafe Reflection CWE-358 — Improperly Implemented Security Check for Standard CWE-300 — Channel Accessible by Non-Endpoint CWE-330 — Use of Insufficiently Random Values CWE-502 — Deserialization of Untrusted Data28 documents9 sources

Severity

4.6MEDIUMNVD

OSV5.0

EPSS

0.1%

top 77.16%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Iphone OS Spoon Library David King Vino

Timeline

PublishedFeb 18

Latest updateMay 24

Description

The iCloud subsystem in Apple iOS before 7.1 allows physically proximate attackers to bypass an intended password requirement, and turn off the Find My iPhone service or complete a Delete Account action and then associate this service with a different Apple ID account, by entering an arbitrary iCloud Account Password value and a blank iCloud Account Description value.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 0.9 | Impact: 3.6

Affected Packages3 packages

▶NVDapple/iphone_os< 7.1

▶Packagistspoon/library< 1.4.1

▶Ubuntudavid_king/vino< 3.8.1-0ubuntu9.3+2

🔴Vulnerability Details

GHSA

Spoon Library as used in Fork CMS allows PHP object injection↗2022-05-24

▶

GHSA

GHSA-xxgg-95mq-2fw5: The iCloud subsystem in Apple iOS before 7↗2022-05-13

▶

OSV

vino vulnerabilities↗2020-10-07

▶

Kernel

btrfs: Don't submit any btree write bio if the fs has errors↗2020-02-12

▶

💥Exploits & PoCs

Exploit-DB

Adobe Acrobat CoolType (AFDKO) - Memory Corruption in the Handling of Type 1 Font load/store Operators↗2019-08-15

▶

Exploit-DB

Adobe Acrobat CoolType (AFDKO) - Call from Uninitialized Memory due to Empty FDArray in Type 1 Fonts↗2019-08-15

▶

Exploit-DB

CISCO Small Business 200 / 300 / 500 Switches - Multiple Vulnerabilities↗2019-07-15

▶

Exploit-DB

Microsoft DirectWrite / AFDKO - Heap-Based Out-of-Bounds Read/Write in OpenType Font Handling Due to Unbounded iFD↗2019-07-10

▶

Exploit-DB

Microsoft DirectWrite / AFDKO - Heap-Based Buffer Overflow in OpenType Font Handling in readCharset↗2019-07-10

▶

📋Vendor Advisories

Red Hat

JON: struts1 reversion of fix for CVE-2014-0114↗2019-10-02

▶

Red Hat

qpid-proton: TLS Man in the Middle Vulnerability↗2019-04-23

▶

Red Hat

struts2: predictable generation of form submission token↗2014-12-08

▶

Red Hat

struts2: Struts internals manipulation via cookie request headers↗2014-05-05

▶

Red Hat

struts2: ClassLoader manipulation via request parameters↗2014-03-06

▶

💬Community

Bugzilla

CVE-2019-13178 calamares: race condition in modules/luksbootkeyfile/main.py↗2019-07-03

▶

Bugzilla

CVE-2014-7809 struts2: predictable generation of form submission token↗2014-12-09

▶

Bugzilla

CVE-2014-0116 struts2: Struts internals manipulation via cookie request headers↗2014-05-06

▶

Bugzilla

CVE-2014-0113 struts2: ClassLoader manipulation via cookie request headers↗2014-04-29

▶

Bugzilla

CVE-2014-0094 struts2: ClassLoader manipulation via request parameters↗2014-03-07

▶