Unrated severityNVD Advisory· Published Jan 30, 2015· Updated May 6, 2026

CVE-2014-8838

Description

The Security component in Apple OS X before 10.10.2 does not properly process cached information about app certificates, which allows attackers to bypass the Gatekeeper protection mechanism by leveraging access to a revoked Developer ID certificate for signing a crafted app.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Apple OS X before 10.10.2 fails to properly process cached app certificate information, allowing attackers to bypass Gatekeeper using a revoked Developer ID certificate.

Vulnerability

The Security component in Apple OS X before 10.10.2 does not properly process cached information about app certificates. This flaw allows attackers to bypass the Gatekeeper protection mechanism by leveraging access to a revoked Developer ID certificate to sign a crafted app. The vulnerability affects OS X Yosemite versions prior to 10.10.2.

Exploitation

An attacker must have access to a revoked Developer ID certificate, which could be obtained from a previous developer or through other means. The attacker then signs a malicious app with that revoked certificate. Because the system caches certificate information and fails to correctly validate the revocation status, Gatekeeper will permit the app to run. No additional user interaction beyond launching the app is required.

Impact

Successful exploitation enables the attacker to bypass Gatekeeper, which is designed to only allow execution of apps signed with valid Developer ID certificates. This allows arbitrary code execution on the target system with the privileges of the user running the app, potentially leading to full system compromise.

Mitigation

Apple addressed this issue in OS X Yosemite v10.10.2 and Security Update 2015-001 [1]. Users should update to the latest version. No workarounds are documented. The vulnerability is not listed on CISA's Known Exploited Vulnerabilities catalog.

References

About the security content of OS X Yosemite v10.10.2 and Security Update 2015-001 - Apple Support

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Apple Inc./Mac Os X
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
Range: <=10.10.1
Apple Inc./OS Xllm-fuzzy
Range: <10.10.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.apple.com/archives/security-announce/2015/Jan/msg00003.htmlnvdVendor Advisory
support.apple.com/HT204244nvdVendor Advisory
www.securitytracker.com/id/1031650nvd
exchange.xforce.ibmcloud.com/vulnerabilities/100525nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000