CVE-2014-4384Path Traversal in Apple Iphone OS

CWE-22Path Traversal2 documents2 sources
Severity
1.9LOWNVD
EPSS
0.0%
top 87.22%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Iphone OS
Timeline
PublishedSep 18
Latest updateMay 17

Description

Directory traversal vulnerability in the App Installation feature in Apple iOS before 8 allows local users to install unverified apps by triggering code-signature validation of an unintended bundle.

CVSS vector

AV:L/AC:M/C:N/I:P/A:NExploitability: 3.4 | Impact: 2.9

Affected Packages1 packages

NVDapple/iphone_os7.1.2+9

🔴Vulnerability Details

1
GHSA
GHSA-47j5-xg3v-x546: Directory traversal vulnerability in the App Installation feature in Apple iOS before 8 allows local users to install unverified apps by triggering co2022-05-17
CVE-2014-4384 — Path Traversal in Apple Iphone OS | cvebase