Lucene search

AppleCVE-2015-3783

HistoryAug 16, 2015 - 11:59 p.m.

CVE-2015-3783

2015-08-1623:59:56

CWE-119

apple

web.nvd.nist.gov

apple

os x

cve-2015-3783

remote code execution

denial of service

memory corruption

application crash

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

9.4

Confidence

High

EPSS

0.918

Percentile

98.9%

JSON

SceneKit in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.

Affected configurations

Nvd

Node

applemac_os_xRange≤10.10.4

VendorProductVersionCPE
applemac_os_x*cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
apple	mac_os_x	*	cpe:2.3:o:apple:mac_os_x::::::::

References

lists.apple.com/archives/security-announce/2015/Aug/msg00001.html

www.securityfocus.com/bid/76340

www.securitytracker.com/id/1033276

support.apple.com/kb/HT205031

www.exploit-db.com/exploits/38264/

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

9.4

Confidence

High

EPSS

0.918

Percentile

98.9%

JSON

Related for CVE-2015-3783