CVE Vulnerabilities

CVE-2014-1381

Published: Jul 01, 2014 | Modified: Dec 22, 2015
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Thunderbolt in Apple OS X before 10.9.4 does not properly restrict IOThunderBoltController API calls, which allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds memory access and application crash) via a crafted call.

Affected Software

Name Vendor Start Version End Version
Mac_os_x Apple 10.9.2 10.9.2
Mac_os_x Apple 10.9 10.9
Mac_os_x Apple 10.9.1 10.9.1
Mac_os_x Apple 10.9.3 10.9.3

References