VYPR
Unrated severityNVD Advisory· Published Apr 23, 2014· Updated Jun 17, 2026

CVE-2014-1320

CVE-2014-1320

Description

IOKit in Apple iOS before 7.1.1, Apple OS X through 10.9.2, and Apple TV before 6.1.1 places kernel pointers into an object data structure, which makes it easier for local users to bypass the ASLR protection mechanism by reading unspecified attributes of the object.

Affected products

18
  • cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*range: <=7.1
    • cpe:2.3:o:apple:iphone_os:7.0:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:iphone_os:7.0.1:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:iphone_os:7.0.2:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:iphone_os:7.0.3:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:iphone_os:7.0.4:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:iphone_os:7.0.5:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:iphone_os:7.0.6:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*range: <=10.9.2
    • cpe:2.3:o:apple:mac_os_x:10.9:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:mac_os_x:10.9.1:*:*:*:*:*:*:*
  • Apple Inc./tvOS4 versions
    cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*range: <=6.1
    • cpe:2.3:o:apple:tvos:6.0:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:tvos:6.0.1:*:*:*:*:*:*:*
    • cpe:2.3:o:apple:tvos:6.0.2:*:*:*:*:*:*:*
  • Apple Inc./TVllm-fuzzy
    Range: <6.1.1
  • Apple Inc./iOSllm-fuzzy
    Range: <7.1.1
  • Apple Inc./OS Xllm-fuzzy
    Range: <=10.9.2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.