Security Advisory

CVE-2014-4362

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-09-18 10:00:00
Last updated 2024-08-06 11:12:35
Assigner apple
State PUBLISHED

Description

The Sandbox Profiles implementation in Apple iOS before 8 does not properly restrict the third-party app sandbox profile, which allows attackers to obtain sensitive Apple ID information via a crafted app.