The kernel in Apple iOS before 8.1.1 and Apple TV before 7.0.2 does not properly validate IOSharedDataQueue object metadata, which allows attackers to execute arbitrary code in a privileged context. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.
Apple
RCE
Iphone Os
Mac Os X
Tvos
NVD
CVSS 2.0
9.3
EPSS
1.9%