Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveAppleCVE-2013-5165
HistoryOct 24, 2013 - 3:48 a.m.

CVE-2013-5165

2013-10-2403:48:48
CWE-264
apple
web.nvd.nist.gov
27
cve-2013-5165
socketfilterfw
application firewall
apple
mac os x
bypass
access restrictions
network connection

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

AI Score

6.2

Confidence

Low

EPSS

0.003

Percentile

65.6%

JSON

socketfilterfw in Application Firewall in Apple Mac OS X before 10.9 does not properly implement the --blockApp option, which allows remote attackers to bypass intended access restrictions via a network connection to an application for which blocking was configured.

Affected configurations

Nvd
Node
applemac_os_xRange10.8.5supplemental_update
OR
applemac_os_xMatch10.8.0
OR
applemac_os_xMatch10.8.1
OR
applemac_os_xMatch10.8.2
OR
applemac_os_xMatch10.8.3
OR
applemac_os_xMatch10.8.4
OR
applemac_os_xMatch10.8.5
VendorProductVersionCPE
applemac_os_x*cpe:2.3:o:apple:mac_os_x:*:supplemental_update:*:*:*:*:*:*
applemac_os_x10.8.0cpe:2.3:o:apple:mac_os_x:10.8.0:*:*:*:*:*:*:*
applemac_os_x10.8.1cpe:2.3:o:apple:mac_os_x:10.8.1:*:*:*:*:*:*:*
applemac_os_x10.8.2cpe:2.3:o:apple:mac_os_x:10.8.2:*:*:*:*:*:*:*
applemac_os_x10.8.3cpe:2.3:o:apple:mac_os_x:10.8.3:*:*:*:*:*:*:*
applemac_os_x10.8.4cpe:2.3:o:apple:mac_os_x:10.8.4:*:*:*:*:*:*:*
applemac_os_x10.8.5cpe:2.3:o:apple:mac_os_x:10.8.5:*:*:*:*:*:*:*

Related

prion 1
nvd 1
cvelist 1
openvas 1
nessus 1
prion
prion
Design/Logic Flaw
2013-10-24 03:48:00
nvd
nvd
CVE-2013-5165
2013-10-24 03:48:48
cvelist
cvelist
CVE-2013-5165
2013-10-24 01:00:00
openvas
openvas
Apple Mac OS X Multiple Vulnerabilities - 01 (Jan 2014)
2014-01-20 00:00:00
nessus
nessus
Mac OS X 10.x < 10.9 Multiple Vulnerabilities (BEAST)
2013-10-23 00:00:00

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:P/A:N

AI Score

6.2

Confidence

Low

EPSS

0.003

Percentile

65.6%

JSON
Related for CVE-2013-5165
prion1nvd1cvelist1openvas1nessus1