VIR Vulnerability Intelligence Relay

CVE-2014-4460

low
Published 2014-11-18 · Modified 2026-05-06
CVSS v3
CVSS v2
2.1
VIR risk
2.1

Description

CFNetwork in Apple iOS before 8.1.1 and OS X before 10.10.1 does not properly clear the browsing cache upon a transition out of private-browsing mode, which makes it easier for physically proximate attackers to obtain sensitive information by reading cache files.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: product-security@apple.com — http://lists.apple.com/archives/security-announce/2014/Nov/msg00001.html

vendor Authored 2026-05-27

Vendor advisory: product-security@apple.com — http://lists.apple.com/archives/security-announce/2014/Nov/msg00000.html

OS impact
OSVersionStatusFixed in
macos macosaffected
macos macos8.0affected
macos macos8.0.1affected
macos macos8.0.2affected
macos macos10.0affected
macos macos10.0.0affected
macos macos10.0.1affected
macos macos10.0.2affected
macos macos10.0.3affected
macos macos10.0.4affected
macos macos10.1affected
macos macos10.1.0affected
macos macos10.1.1affected
macos macos10.1.2affected
macos macos10.1.3affected
macos macos10.1.4affected
macos macos10.1.5affected
macos macos10.2affected
macos macos10.2.0affected
macos macos10.2.1affected
macos macos10.2.2affected
macos macos10.2.3affected
macos macos10.2.4affected
macos macos10.2.5affected
macos macos10.2.6affected
macos macos10.2.7affected
macos macos10.2.8affected
macos macos10.3affected
macos macos10.3.0affected
macos macos10.3.1affected
macos macos10.3.2affected
macos macos10.3.3affected
macos macos10.3.4affected
macos macos10.3.5affected
macos macos10.3.6affected
macos macos10.3.7affected
macos macos10.3.8affected
macos macos10.3.9affected
macos macos10.4affected
macos macos10.4.0affected
macos macos10.4.1affected
macos macos10.4.2affected
macos macos10.4.3affected
macos macos10.4.4affected
macos macos10.4.5affected
macos macos10.4.6affected
macos macos10.4.7affected
macos macos10.4.8affected
macos macos10.4.9affected
macos macos10.4.10affected
macos macos10.4.11affected
macos macos10.5affected
macos macos10.5.0affected
macos macos10.5.1affected
macos macos10.5.2affected
macos macos10.5.3affected
macos macos10.5.4affected
macos macos10.5.5affected
macos macos10.5.6affected
macos macos10.5.7affected
macos macos10.5.8affected
macos macos10.6.0affected
macos macos10.6.1affected
macos macos10.6.2affected
macos macos10.6.3affected
macos macos10.6.4affected
macos macos10.6.5affected
macos macos10.6.6affected
macos macos10.6.7affected
macos macos10.6.8affected
macos macos10.7.0affected
macos macos10.7.1affected
macos macos10.7.2affected
macos macos10.7.3affected
macos macos10.7.4affected
macos macos10.7.5affected
macos macos10.8.0affected
macos macos10.8.1affected
macos macos10.8.2affected
macos macos10.8.3affected
macos macos10.8.4affected
macos macos10.8.5affected
macos macos10.9affected
macos macos10.9.1affected
macos macos10.9.2affected
macos macos10.9.3affected
macos macos10.9.4affected
macos macos10.9.5affected
macos macos10.10.0affected

References

CWEs

CWE-200

Verify integrity in audit chain (admin only). AS-IS.