| CVE ID | CVE-2014-1320 |
| CVSS SCORE | 2.1, AV:L/AC:L/Au:N/C:P/I:N/A:N |
| AFFECTED VENDORS |
Apple |
| AFFECTED PRODUCTS |
OS X |
| VULNERABILITY DETAILS |
The specific flaw exists within IOKit. The issue lies in the storage of kernel pointers in an object's data structure that could be retrieved from userland. An attacker can leverage this vulnerability to leak kernel pointers. |
| ADDITIONAL DETAILS |
Apple has issued an update to correct this vulnerability. More details can be found at:
http://support.apple.com/kb/HT6207 |
| DISCLOSURE TIMELINE |
|
| CREDIT | Ian Beer of Google Project Zero |
