exploitDog

GHSA-hrv4-h3r9-fhhc

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

SpotlightIndex in Apple OS X before 10.10.2 does not properly perform deserialization during access to a permission cache, which allows local users to read search results associated with other users' protected files via a Spotlight query.

SpotlightIndex in Apple OS X before 10.10.2 does not properly perform deserialization during access to a permission cache, which allows local users to read search results associated with other users' protected files via a Spotlight query.

Ссылки

EPSS

Процентиль: 16%

0.00051

Низкий

CVE ID

Дефекты

CWE-284

Связанные уязвимости

CVE-2014-8833

nvd

около 11 лет назад

SpotlightIndex in Apple OS X before 10.10.2 does not properly perform deserialization during access to a permission cache, which allows local users to read search results associated with other users' protected files via a Spotlight query.

EPSS

Процентиль: 16%

0.00051

Низкий

CVE ID

Дефекты

CWE-284