Lucene search

K
cve[email protected]CVE-2015-3708
HistoryJul 03, 2015 - 2:00 a.m.

CVE-2015-3708

2015-07-0302:00:00
web.nvd.nist.gov
30
apple
os x
kextd
symlink attack
cve-2015-3708
nvd

3.8 Low

AI Score

Confidence

High

8.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:C/A:C

0.004 Low

EPSS

Percentile

72.5%

kextd in kext tools in Apple OS X before 10.10.4 allows attackers to write to arbitrary files via a crafted app that conducts a symlink attack.

Affected configurations

NVD
Node
applemac_os_xRange10.10.3
CPENameOperatorVersion
apple:mac_os_xapple mac os xle10.10.3

3.8 Low

AI Score

Confidence

High

8.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:C/A:C

0.004 Low

EPSS

Percentile

72.5%