CVE-2014-1266

Name: CVE-2014-1266
Creator: NVD / NIST
Published: 2014-02-22T17:05:21.767+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 7.4/10EPSS 5.71%

Last modified Jun 17, 2026

CVE-2014-1266 is a high-severity vulnerability rated 7.4/10 on the CVSS scale. The SSLVerifySignedServerKeyExchange function in libsecurity_ssl/lib/sslKeyExchange.c in the Secure Transport feature in the Data Security component in Apple iOS 6.x before 6.1.6 and 7.x before 7.0.6, Apple TV 6.x before 6.0.2, and Apple OS X 10.9.x before 10.9.2 does not check the signature in a TLS Server Key Exchange message, which allows man-in-the-middle attackers to spoof SSL servers by (1) using an arbitrary private key for the signing step or (2) omitting the signing step.. EPSS estimates a 5.71% chance of exploitation in the next 30 days.

Description

The SSLVerifySignedServerKeyExchange function in libsecurity_ssl/lib/sslKeyExchange.c in the Secure Transport feature in the Data Security component in Apple iOS 6.x before 6.1.6 and 7.x before 7.0.6, Apple TV 6.x before 6.0.2, and Apple OS X 10.9.x before 10.9.2 does not check the signature in a TLS Server Key Exchange message, which allows man-in-the-middle attackers to spoof SSL servers by (1) using an arbitrary private key for the signing step or (2) omitting the signing step.

Metrics

CVSS 3.1

7.4/10

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

EPSS Probability

5.71%

92.0th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-295

Affected Software

Vendor	Product	Versions
Apple	Iphone Os	>= 6.0, < 6.1.6
Apple	Iphone Os	>= 7.0, < 7.0.6
Apple	Mac Os X	>= 10.9, < 10.9.2
Apple	Tvos	>= 6.0, < 6.0.2

References

http://it.slashdot.org/comments.pl?sid=4821073&cid=46310187Issue Tracking
http://support.apple.com/kb/HT6146Vendor Advisory
http://support.apple.com/kb/HT6147Vendor Advisory
http://support.apple.com/kb/HT6148Vendor Advisory
http://support.apple.com/kb/HT6150Vendor Advisory
https://news.ycombinator.com/item?id=7281378Exploit, Issue Tracking
https://www.cs.columbia.edu/~smb/blog/2014-02/2014-02-23.htmlExploit
https://www.cs.columbia.edu/~smb/blog/2014-02/2014-02-24.htmlExploit
https://www.imperialviolet.org/2014/02/22/applebug.htmlExploit
http://it.slashdot.org/comments.pl?sid=4821073&cid=46310187Issue Tracking
http://support.apple.com/kb/HT6146Vendor Advisory
http://support.apple.com/kb/HT6147Vendor Advisory
http://support.apple.com/kb/HT6148Vendor Advisory
http://support.apple.com/kb/HT6150Vendor Advisory
https://news.ycombinator.com/item?id=7281378Exploit, Issue Tracking
https://www.cs.columbia.edu/~smb/blog/2014-02/2014-02-23.htmlExploit
https://www.cs.columbia.edu/~smb/blog/2014-02/2014-02-24.htmlExploit
https://www.imperialviolet.org/2014/02/22/applebug.htmlExploit

Timeline

Published: Feb 22, 2014
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2014-1266?

How severe is CVE-2014-1266?

CVE-2014-1266 has a CVSS score of 7.4/10 (HIGH severity). The EPSS model estimates a 5.71% probability of exploitation in the next 30 days.

How do I fix CVE-2014-1266?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2014-1266?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST