CVE-2013-1033

2013-09-1613:02:00

CWE-264

[email protected]

web.nvd.nist.gov

apple

mac os x

screen lock

bypass

cve-2013-1033

security vulnerability

5.8 Medium

AI Score

Confidence

Low

5.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:P/A:N

0.001 Low

EPSS

Percentile

43.4%

JSON

Screen Lock in Apple Mac OS X before 10.8.5 does not properly track sessions, which allows remote authenticated users to bypass locking by leveraging screen-sharing access.

CPENameOperatorVersion
apple:mac_os_xapple mac os xeq10.8.3
apple:mac_os_xapple mac os xeq10.8.1
apple:mac_os_xapple mac os xeq10.8.0
apple:mac_os_xapple mac os xeq10.8.2
apple:mac_os_xapple mac os xle10.8.4

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	eq	10.8.3
apple:mac_os_x	apple mac os x	eq	10.8.1
apple:mac_os_x	apple mac os x	eq	10.8.0
apple:mac_os_x	apple mac os x	eq	10.8.2
apple:mac_os_x	apple mac os x	le	10.8.4