VDB
CVE-2014-4448
CVE-2014-4448
PUBLISHED
CVSS 1.899999976158142 LOW
House Arrest in Apple iOS before 8.1 relies on the hardware UID for its encryption key, which makes it easier for physically proximate attackers to obtain sensitive information from a Documents directory by obtaining this UID.
EPSS 0.05% · 14.5th percentile
Risk Scores
CVSS 2.0
1.899999976158142
EPSS Score
0.05%
14.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| apple | iphone_os | 0 |
| n/a | n/a | * |
Exploit Intelligence
- Test code for poodle attack (CVE-2014-3566) (github-poc)
- Test code for poodle attack (CVE-2014-3566) (github-poc)
- Test code for poodle attack (CVE-2014-3566) (github-poc)
- Test code for poodle attack (CVE-2014-3566) (github-poc)
- uthrasri/openssl_g2.5_CVE-2014-3566 (github-poc)
- uthrasri/openssl_g2.5_CVE-2014-3566 (github-poc)
- uthrasri/openssl_g2.5_CVE-2014-3566 (github-poc)
- uthrasri/openssl_g2.5_CVE-2014-3566 (github-poc)
- :poodle: Poodle (Padding Oracle On Downgraded Legacy Encryption) attack CVE-2014-3566 :poodle: (github-poc)
- :poodle: Poodle (Padding Oracle On Downgraded Legacy Encryption) attack CVE-2014-3566 :poodle: (github-poc)
…and 23 more exploits
Timeline
- Oct 22, 2014 CVE Published
- Jun 20, 2016 PoC Published
- Jul 20, 2018 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
References
- https://support.apple.com/kb/HT6541 url
- 1031077 vdb
- 70661 vdb
- appleios-cve20144448-weak-security(97664) vdb
- APPLE-SA-2014-10-20-1 vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2014-4448 advisory