exploitDog

GHSA-rr87-68ch-wqr7

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The kernel in Apple OS X before 10.10.2 does not properly validate IODataQueue object metadata fields, which allows attackers to execute arbitrary code in a privileged context via a crafted app.

The kernel in Apple OS X before 10.10.2 does not properly validate IODataQueue object metadata fields, which allows attackers to execute arbitrary code in a privileged context via a crafted app.

Ссылки

EPSS

Процентиль: 76%

0.00982

Низкий

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2014-8824

nvd

около 11 лет назад

The kernel in Apple OS X before 10.10.2 does not properly validate IODataQueue object metadata fields, which allows attackers to execute arbitrary code in a privileged context via a crafted app.

EPSS

Процентиль: 76%

0.00982

Низкий

CVE ID

Дефекты

CWE-20