exploitDog

CVE-2014-4435

Опубликовано: 18 окт. 2014

Источник: nvd

CVSS2: 4.4

EPSS Низкий

Описание

The "iCloud Find My Mac" feature in Apple OS X before 10.10 does not properly enforce rate limiting of lost-mode PIN entry, which makes it easier for physically proximate attackers to obtain access via a brute-force attack involving a series of reboots.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

Версия до 10.9.5 (включая)

EPSS

Процентиль: 19%

0.00061

Низкий

4.4 Medium

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-9g3g-mq9x-9vqq

github

больше 3 лет назад

The "iCloud Find My Mac" feature in Apple OS X before 10.10 does not properly enforce rate limiting of lost-mode PIN entry, which makes it easier for physically proximate attackers to obtain access via a brute-force attack involving a series of reboots.

EPSS

Процентиль: 19%

0.00061

Низкий

4.4 Medium

CVSS2

Дефекты

CWE-287