Back to search
CVE-2014-4362
Published: Sep 18, 2014
Modified: Aug 6, 2024
PUBLISHED
Description
The Sandbox Profiles implementation in Apple iOS before 8 does not properly restrict the third-party app sandbox profile, which allows attackers to obtain sensitive Apple ID information via a crafted app.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://support.apple.com/kb/HT6441
x_refsource_CONFIRM
69920
vdb-entry
x_refsource_BID
1030866
vdb-entry
x_refsource_SECTRACK
69882
vdb-entry
x_refsource_BID
appleios-cve20144362-info-disc(96104)
vdb-entry
x_refsource_XF
APPLE-SA-2014-09-17-1
vendor-advisory
x_refsource_APPLE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now