Security Advisory
CVE-2014-4362
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
The Sandbox Profiles implementation in Apple iOS before 8 does not properly restrict the third-party app sandbox profile, which allows attackers to obtain sensitive Apple ID information via a crafted app.