Lucene search
AppleCVE-2015-5943HistoryOct 23, 2015 - 9:59 p.m.
CVE-2015-5943
2015-10-2321:59:19
CWE-254
apple
web.nvd.nist.gov
36
cve-2015-5943
securityagent
apple os x
access restrictions
bypass
crafted app
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
8
Confidence
Low
EPSS
0.001
Percentile
32.0%
SecurityAgent in Apple OS X before 10.11.1 does not prevent synthetic clicks from reaching keychain windows, which allows attackers to bypass intended access restrictions via a crafted app.
Affected configurations
Node
applemac_os_xRange≤10.11.0
Related
cvelist
cvelist
CVE-2015-5943
2015-10-23 21:00:00
prion
prion
Design/Logic Flaw
2015-10-23 21:59:00
nvd
nvd
CVE-2015-5943
2015-10-23 21:59:19
openvas
openvas
Apple Mac OS X Multiple Vulnerabilities-01 (Oct 2015)
2015-10-29 00:00:00
securityvulns
securityvulns
APPLE-SA-2015-10-21-4 OS X El Capitan 10.11.1 and Security Update 2015-007
2015-10-25 00:00:00
Apple Mac OS X / Mac EFI / OS X Server multiple security vulnerabilities
2015-10-25 00:00:00
nessus
nessus
Mac OS X < 10.11.1 Multiple Vulnerabilities
2015-10-29 00:00:00
Mac OS X 10.9.5 or later < 10.11.1 Multiple Vulnerabilities
2016-05-27 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
8
Confidence
Low
EPSS
0.001
Percentile
32.0%
Related for CVE-2015-5943