Vulnerability-Lookup

CVE-2014-4494 (GCVE-0-2014-4494)

Vulnerability from cvelistv5 – Published: 2015-01-30 11:00 – Updated: 2024-08-06 11:20

Summary

Springboard in Apple iOS before 8.1.3 does not properly validate signatures when determining whether to solicit an app trust decision from the user, which allows attackers to bypass intended first-launch restrictions by leveraging access to an enterprise distribution certificate for signing a crafted app.

Severity ?

No CVSS data available.

CWE

Assigner

apple

References

URL

FKIE_CVE-2014-4494

Vulnerability from fkie_nvd - Published: 2015-01-30 11:59 - Updated: 2025-04-12 10:46

Severity ?

Summary

References

URL	Tags
product-security@apple.com	http://lists.apple.com/archives/security-announce/2015/Jan/msg00001.html	Vendor Advisory
product-security@apple.com	http://support.apple.com/HT204245	Vendor Advisory
product-security@apple.com	http://www.securitytracker.com/id/1031652
af854a3a-2127-422b-91ae-364da2661108	http://lists.apple.com/archives/security-announce/2015/Jan/msg00001.html	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://support.apple.com/HT204245	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1031652

Impacted products

	Vendor	Product	Version
	apple	iphone_os	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "31944D25-25B6-4EA4-92B0-6B03921E0CCE",
              "versionEndIncluding": "8.1.2",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Springboard in Apple iOS before 8.1.3 does not properly validate signatures when determining whether to solicit an app trust decision from the user, which allows attackers to bypass intended first-launch restrictions by leveraging access to an enterprise distribution certificate for signing a crafted app."
    },
    {
      "lang": "es",
      "value": "Springboard en Apple iOS anterior a 8.1.3 no valida correctamente firmas cuando determine si solicitar una decisi\u00f3n de confianza de la aplicaci\u00f3n del usuario, lo que permite a atacantes evadir las restricciones del primer lanzamiento mediante el aprovechamiento del acceso a un certificado de la distribuci\u00f3n del negocio para firmar una aplicaci\u00f3n manipulada."
    }
  ],
  "id": "CVE-2014-4494",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2015-01-30T11:59:23.453",
  "references": [
    {
      "source": "product-security@apple.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://lists.apple.com/archives/security-announce/2015/Jan/msg00001.html"
    },
    {
      "source": "product-security@apple.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://support.apple.com/HT204245"
    },
    {
      "source": "product-security@apple.com",
      "url": "http://www.securitytracker.com/id/1031652"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://lists.apple.com/archives/security-announce/2015/Jan/msg00001.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://support.apple.com/HT204245"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id/1031652"
    }
  ],
  "sourceIdentifier": "product-security@apple.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTFR-2015-AVI-042

Vulnerability from certfr_avis - Published: 2015-01-28 - Updated: 2015-01-28

De multiples vulnérabilités ont été corrigées dans Apple iOS. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une atteinte à la confidentialité des données et une élévation de privilèges.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Versions antérieures à iOS 8.1.3

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

CNVD-2015-00848

Vulnerability from cnvd - Published: 2015-02-04

Title

Apple TV和iOS企业签名应用安全绕过漏洞

Description

Apple iOS是一款运行在苹果iPhone和iPod touch设备上的最新的操作系统。 Apple TV是苹果可以让PC和iPod中的相片,视频和音乐无线传输到电视之中高清晰度播出。 Apple TV和iOS企业签名应用存在安全漏洞，由于Apple TV和iOS在第一次打开企业级应用时未能正确处理可信提示，允许攻击者可绕过某些安全限制，执行未授权操作。

Severity

中

Patch Name

Apple TV和iOS企业签名应用安全绕过漏洞的补丁

Patch Description

Formal description

目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://support.apple.com/

Reference

http://www.securityfocus.com/bid/72333 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-4494 http://support.apple.com/HT204245

Impacted products

Name
Apple IOS < 8.1.3

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "72333"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2014-4494"
    }
  },
  "description": "Apple iOS\u662f\u4e00\u6b3e\u8fd0\u884c\u5728\u82f9\u679ciPhone\u548ciPod touch\u8bbe\u5907\u4e0a\u7684\u6700\u65b0\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002 Apple TV\u662f\u82f9\u679c\u53ef\u4ee5\u8ba9PC\u548ciPod\u4e2d\u7684\u76f8\u7247,\u89c6\u9891\u548c\u97f3\u4e50\u65e0\u7ebf\u4f20\u8f93\u5230\u7535\u89c6\u4e4b\u4e2d\u9ad8\u6e05\u6670\u5ea6\u64ad\u51fa\u3002 \r\n\r\nApple TV\u548ciOS\u4f01\u4e1a\u7b7e\u540d\u5e94\u7528\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u7531\u4e8eApple TV\u548ciOS\u5728\u7b2c\u4e00\u6b21\u6253\u5f00\u4f01\u4e1a\u7ea7\u5e94\u7528\u65f6\u672a\u80fd\u6b63\u786e\u5904\u7406\u53ef\u4fe1\u63d0\u793a\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u53ef\u7ed5\u8fc7\u67d0\u4e9b\u5b89\u5168\u9650\u5236\uff0c\u6267\u884c\u672a\u6388\u6743\u64cd\u4f5c\u3002",
  "discovererName": "lokihardt@ASRT working with HP\u0027s Zero Day Initiative , Jordan Milne, Song Jin, Hui Xue, and Tao Wei of FireEye, Inc",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\nhttp://support.apple.com/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2015-00848",
  "openTime": "2015-02-04",
  "patchDescription": "Apple iOS\u662f\u4e00\u6b3e\u8fd0\u884c\u5728\u82f9\u679ciPhone\u548ciPod touch\u8bbe\u5907\u4e0a\u7684\u6700\u65b0\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002 Apple TV\u662f\u82f9\u679c\u53ef\u4ee5\u8ba9PC\u548ciPod\u4e2d\u7684\u76f8\u7247,\u89c6\u9891\u548c\u97f3\u4e50\u65e0\u7ebf\u4f20\u8f93\u5230\u7535\u89c6\u4e4b\u4e2d\u9ad8\u6e05\u6670\u5ea6\u64ad\u51fa\u3002 \r\n\r\nApple TV\u548ciOS\u4f01\u4e1a\u7b7e\u540d\u5e94\u7528\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u7531\u4e8eApple TV\u548ciOS\u5728\u7b2c\u4e00\u6b21\u6253\u5f00\u4f01\u4e1a\u7ea7\u5e94\u7528\u65f6\u672a\u80fd\u6b63\u786e\u5904\u7406\u53ef\u4fe1\u63d0\u793a\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u53ef\u7ed5\u8fc7\u67d0\u4e9b\u5b89\u5168\u9650\u5236\uff0c\u6267\u884c\u672a\u6388\u6743\u64cd\u4f5c\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Apple TV\u548ciOS\u4f01\u4e1a\u7b7e\u540d\u5e94\u7528\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Apple IOS \u003c 8.1.3"
  },
  "referenceLink": "http://www.securityfocus.com/bid/72333\r\nhttp://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-4494\r\nhttp://support.apple.com/HT204245",
  "serverity": "\u4e2d",
  "submitTime": "2015-01-29",
  "title": "Apple TV\u548ciOS\u4f01\u4e1a\u7b7e\u540d\u5e94\u7528\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e"
}

GHSA-PH2M-X7WF-Q6GR

Vulnerability from github – Published: 2022-05-17 04:01 – Updated: 2022-05-17 04:01

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2014-4494"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-20"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2015-01-30T11:59:00Z",
    "severity": "MODERATE"
  },
  "details": "Springboard in Apple iOS before 8.1.3 does not properly validate signatures when determining whether to solicit an app trust decision from the user, which allows attackers to bypass intended first-launch restrictions by leveraging access to an enterprise distribution certificate for signing a crafted app.",
  "id": "GHSA-ph2m-x7wf-q6gr",
  "modified": "2022-05-17T04:01:58Z",
  "published": "2022-05-17T04:01:58Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-4494"
    },
    {
      "type": "WEB",
      "url": "http://lists.apple.com/archives/security-announce/2015/Jan/msg00001.html"
    },
    {
      "type": "WEB",
      "url": "http://support.apple.com/HT204245"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id/1031652"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2014-4494

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Aliases

CVE-2014-4494

Aliases

CVE-2014-4494

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2014-4494",
    "description": "Springboard in Apple iOS before 8.1.3 does not properly validate signatures when determining whether to solicit an app trust decision from the user, which allows attackers to bypass intended first-launch restrictions by leveraging access to an enterprise distribution certificate for signing a crafted app.",
    "id": "GSD-2014-4494"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2014-4494"
      ],
      "details": "Springboard in Apple iOS before 8.1.3 does not properly validate signatures when determining whether to solicit an app trust decision from the user, which allows attackers to bypass intended first-launch restrictions by leveraging access to an enterprise distribution certificate for signing a crafted app.",
      "id": "GSD-2014-4494",
      "modified": "2023-12-13T01:22:45.334460Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "product-security@apple.com",
        "ID": "CVE-2014-4494",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Springboard in Apple iOS before 8.1.3 does not properly validate signatures when determining whether to solicit an app trust decision from the user, which allows attackers to bypass intended first-launch restrictions by leveraging access to an enterprise distribution certificate for signing a crafted app."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://support.apple.com/HT204245",
            "refsource": "CONFIRM",
            "url": "http://support.apple.com/HT204245"
          },
          {
            "name": "APPLE-SA-2015-01-27-2",
            "refsource": "APPLE",
            "url": "http://lists.apple.com/archives/security-announce/2015/Jan/msg00001.html"
          },
          {
            "name": "1031652",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id/1031652"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "8.1.2",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "product-security@apple.com",
          "ID": "CVE-2014-4494"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Springboard in Apple iOS before 8.1.3 does not properly validate signatures when determining whether to solicit an app trust decision from the user, which allows attackers to bypass intended first-launch restrictions by leveraging access to an enterprise distribution certificate for signing a crafted app."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-20"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "APPLE-SA-2015-01-27-2",
              "refsource": "APPLE",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://lists.apple.com/archives/security-announce/2015/Jan/msg00001.html"
            },
            {
              "name": "http://support.apple.com/HT204245",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://support.apple.com/HT204245"
            },
            {
              "name": "1031652",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id/1031652"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2015-11-17T16:25Z",
      "publishedDate": "2015-01-30T11:59Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2014-4494 (GCVE-0-2014-4494)

FKIE_CVE-2014-4494

CERTFR-2015-AVI-042

Solution

CNVD-2015-00848

GHSA-PH2M-X7WF-Q6GR

GSD-2014-4494

Tags

Sightings

Nomenclature