Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistAppleCVELIST:CVE-2014-1296
HistoryApr 23, 2014 - 10:00 a.m.

CVE-2014-1296

2014-04-2310:00:00
apple
www.cve.org

5.8 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.3%

JSON

CFNetwork in Apple iOS before 7.1.1, Apple OS X through 10.9.2, and Apple TV before 6.1.1 does not ensure that a Set-Cookie HTTP header is complete before interpreting the header’s value, which allows remote attackers to bypass intended access restrictions by triggering the closing of a TCP connection during transmission of a header, as demonstrated by an HTTPOnly restriction.

Related

prion 1
cve 1
nvd 1
securityvulns 9
nessus 5
openvas 3
prion
prion
Design/Logic Flaw
2014-04-23 11:52:00
cve
cve
CVE-2014-1296
2014-04-23 11:52:59
nvd
nvd
CVE-2014-1296
2014-04-23 11:52:59
securityvulns
securityvulns
APPLE-SA-2014-05-15-2 iTunes 11.2
2014-05-29 00:00:00
iTunes security vulnerabilities
2014-05-29 00:00:00
Apple Mac OS X multiple security vulnerabilities
2015-04-09 00:00:00
nessus
nessus
iTunes for Windows < 11.2 Multiple Vulnerabilities
2015-07-19 00:00:00
Apple iTunes < 11.2 Multiple Vulnerabilities (uncredentialed check)
2014-05-16 00:00:00
Apple iTunes < 11.2 Multiple Vulnerabilities (credentialed check)
2014-05-16 00:00:00
openvas
openvas
Apple Mac OS X Denial of Service And Access Bypass Vulnerability
2016-11-17 00:00:00
Apple Mac OS X Multiple Vulnerabilities-03 (Nov 2016)
2016-11-17 00:00:00
Apple Mac OS X Multiple Vulnerabilities-02 (Nov 2016)
2016-11-17 00:00:00

5.8 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.3%

JSON
Related for CVELIST:CVE-2014-1296
prion1cve1nvd1securityvulns9nessus5openvas3