Описание
An issue existed in the storage of sensitive tokens. This issue was addressed by placing the tokens in Keychain. This issue is fixed in macOS High Sierra 10.13. A local attacker may gain access to iCloud authentication tokens.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 10.0 (включая) до 10.13 (исключая)
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
EPSS
Процентиль: 15%
0.0005
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-922
Связанные уязвимости
github
около 4 лет назад
An issue existed in the storage of sensitive tokens. This issue was addressed by placing the tokens in Keychain. This issue is fixed in macOS High Sierra 10.13. A local attacker may gain access to iCloud authentication tokens.
EPSS
Процентиль: 15%
0.0005
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-922