Lucene search
K

6 matches found

Prion
Prion
added 2018/04/03 6:29 a.m.21 views

Race condition

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. The issue involves the "Security" component. A race condition allows attackers to bypass intended entitlement restrictions for sending XPC messages via a crafted app...

5.1CVSS5.2AI score0.0292EPSS
Exploits1References3Affected Software2
Cvelist
Cvelist
added 2018/04/03 6:0 a.m.22 views

CVE-2017-7004

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. The issue involves the "Security" component. A race condition allows attackers to bypass intended entitlement restrictions for sending XPC messages via a crafted app...

6.5AI score0.0292EPSS
Exploits1References3
CVE
CVE
added 2018/04/03 6:0 a.m.67 views

CVE-2017-7004

CVE-2017-7004 describes a race condition in userspace entitlement checks that could allow a local attacker to bypass entitlement restrictions and send privileged XPC messages. Affected products are Apple iOS prior to 10.3.2 and macOS prior to 10.12.5. The root cause is a race in how entitlements ...

7CVSS6.3AI score0.0292EPSS
Exploits1References3Affected Software2
Prion
Prion
added 2015/10/23 9:59 p.m.22 views

Code injection

The MCX Application Restrictions component in Apple OS X before 10.11.1, when Managed Configuration is enabled, mishandles provisioning profiles, which allows attackers to bypass intended entitlement restrictions and gain privileges via a crafted developer-signed app...

7.6CVSS6.4AI score0.01379EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/10/23 9:0 p.m.28 views

CVE-2015-7016

The MCX Application Restrictions component in Apple OS X before 10.11.1, when Managed Configuration is enabled, mishandles provisioning profiles, which allows attackers to bypass intended entitlement restrictions and gain privileges via a crafted developer-signed app...

8.5AI score0.01379EPSS
Exploits0References2
CVE
CVE
added 2015/10/23 9:0 p.m.70 views

CVE-2015-7016

The CVE-2015-7016 issue affects Apple Mac OS X (MCX Application Restrictions) prior to OS X 10.11.1 where Managed Configuration mishandles provisioning profiles. This enables a crafted developer-signed app to bypass entitlement restrictions and gain privileges, due to a flaw in how provisioning p...

7.6CVSS8.2AI score0.01379EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder