CVE-2014-4448Apple Iphone OS vulnerability

CWE-3102 documents2 sources
Severity
1.9LOWNVD
EPSS
0.0%
top 86.09%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Iphone OS
Timeline
PublishedOct 22
Latest updateMay 17

Description

House Arrest in Apple iOS before 8.1 relies on the hardware UID for its encryption key, which makes it easier for physically proximate attackers to obtain sensitive information from a Documents directory by obtaining this UID.

CVSS vector

AV:L/AC:M/C:P/I:N/A:NExploitability: 3.4 | Impact: 2.9

Affected Packages1 packages

NVDapple/iphone_os8.0.2

🔴Vulnerability Details

1
GHSA
GHSA-xrrh-2xgh-93p5: House Arrest in Apple iOS before 82022-05-17
CVE-2014-4448 — Apple Iphone OS vulnerability | cvebase