CVE-2014-4404

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Sep 18, 2014

Updated: Dec 19, 2024

CWE ID 787

Summary

CVE-2014-4404 is a heap-based buffer overflow vulnerability affecting the IOHIDFamily component in Apple iOS versions prior to 8 and Apple TV versions prior to 7. An attacker can exploit this weakness by providing a maliciously crafted key-mapping property to a vulnerable application. Successful exploitation grants the attacker the ability to execute arbitrary code in a privileged context. This vulnerability poses a significant risk to system security and should be addressed by updating to the latest compatible software versions.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

iOS
Apple Mac Os X
MacOS
tvOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/Lm8WSD
https://www.cve.org/CVERecord?id=CVE-2014-4404
https://nvd.nist.gov/vuln/detail/CVE-2014-4404

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners