CVE-2014-4432

Name of the Vulnerable Software and Affected Versions Apple OS X versions prior to 10.10

Description The issue concerns the display of encryption status in Apple OS X. Specifically, fdesetup does not properly display the encryption status between a setting-update action and a reboot action. This might make it easier for physically proximate attackers to obtain cleartext data by leveraging ignorance of the reboot requirement.

Recommendations For Apple OS X versions prior to 10.10, update to version 10.10 or later to resolve the issue.