Unrated severityNVD Advisory· Published Sep 19, 2014· Updated May 6, 2026

CVE-2014-4403

Description

The kernel in Apple OS X before 10.9.5 allows local users to obtain sensitive address information and bypass the ASLR protection mechanism by leveraging predictability of the location of the CPU Global Descriptor Table.

Affected products

Apple Inc./Mac Os X5 versions
cpe:2.3:o:apple:mac_os_x:10.9:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:o:apple:mac_os_x:10.9:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.9.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.9.2:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.9.3:*:*:*:*:*:*:*
- cpe:2.3:o:apple:mac_os_x:10.9.4:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.apple.com/kb/HT6443nvdVendor Advisory
www.securityfocus.com/bid/69910nvd
www.securitytracker.com/id/1030868nvd
exchange.xforce.ibmcloud.com/vulnerabilities/96064nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000