Lucene search

[email protected]CVE-2016-4713

HistorySep 25, 2016 - 10:59 a.m.

CVE-2016-4713

2016-09-2510:59:00

CWE-200

CWE-264

[email protected]

web.nvd.nist.gov

apple

os x

cve

2016

4713

coredisplay

screen-sharing

security vulnerability

nvd

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

8.4 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

50.5%

JSON

CoreDisplay in Apple OS X before 10.12 allows attackers to view arbitrary users’ screens by leveraging screen-sharing access.

CPENameOperatorVersion
apple:mac_os_xapple mac os xle10.11.6

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	le	10.11.6

References

lists.apple.com/archives/security-announce/2016/Sep/msg00006.html

www.securityfocus.com/bid/93055

www.securitytracker.com/id/1036858

support.apple.com/HT207170

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

8.4 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

50.5%

JSON

Related for CVE-2016-4713

prion1 openvas1 apple2 nessus2