CVE-2014-4397Improper Input Validation in Apple MAC OS X

CWE-20Improper Input Validation31 documents4 sources
Severity
6.9MEDIUMNVD
EPSS
0.3%
top 50.86%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple MAC OS X
Timeline
PublishedSep 19
Latest updateMay 17

Description

An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code in a privileged context via a crafted application, a different vulnerability than CVE-2014-4394, CVE-2014-4395, CVE-2014-4396, CVE-2014-4398, CVE-2014-4399, CVE-2014-4400, CVE-2014-4401, and CVE-2014-4416.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages1 packages

NVDapple/mac_os_x6 versions+5

🔴Vulnerability Details

11
GHSA
GHSA-5q63-cx2m-4chr: An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 102022-05-17
GHSA
GHSA-chwq-ffmj-8hg9: An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 102022-05-17
GHSA
GHSA-382w-3hrq-xh95: An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 102022-05-17
GHSA
GHSA-4gqx-3q27-7q9q: An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 102022-05-17
GHSA
GHSA-c76c-683r-22cf: An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 102022-05-17

📋Vendor Advisories

11
Citrix
Citrix Security Bulletin CTX140814
Citrix
Citrix Security Bulletin CTX200206
Citrix
Citrix Security Bulletin CTX140651
Citrix
Citrix Security Bulletin CTX139591
Citrix
Citrix Security Bulletin CTX200260