CVE-2014-8838

2015-01-30T06:59:47
ID CVE-2014-8838
Type cve
Reporter NVD
Modified 2017-09-07T21:29:29

Description

The Security component in Apple OS X before 10.10.2 does not properly process cached information about app certificates, which allows attackers to bypass the Gatekeeper protection mechanism by leveraging access to a revoked Developer ID certificate for signing a crafted app.