Security Advisory

CVE-2014-1381

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-07-01 10:00:00

Last updated 2024-08-06 09:42:34

Assigner apple

State PUBLISHED

Description

Thunderbolt in Apple OS X before 10.9.4 does not properly restrict IOThunderBoltController API calls, which allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds memory access and application crash) via a crafted call.

← Browse all CVEs View on cve.org ↗