Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2017-2675

Опубликовано: 06 апр. 2017
Источник: nvd
CVSS3: 7.8
CVSS2: 4.6
EPSS Низкий

Описание

Little Snitch version 3.0 through 3.7.3 suffer from a local privilege escalation vulnerability in the installer part. The vulnerability is related to the installation of the configuration file "at.obdev.littlesnitchd.plist" which gets installed to /Library/LaunchDaemons.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:obdev:little_snitch:3.0:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.0.2:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.0.3:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.0.4:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.1:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.1.1:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.3:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.3.1:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.3.2:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.3.3:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.3.4:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.4:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.4.1:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.4.2:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.5:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.5.1:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.5.2:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.5.3:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.6:*:*:*:*:*:*:*
cpe:2.3:a:obdev:little_snitch:3.6.1:*:*:*:*:*:*:*
cpe:2.3:a:objective_development:little_snitch:3.6.2:*:*:*:*:*:*:*
cpe:2.3:a:objective_development:little_snitch:3.6.3:*:*:*:*:*:*:*
cpe:2.3:a:objective_development:little_snitch:3.6.4:*:*:*:*:*:*:*
cpe:2.3:a:objective_development:little_snitch:3.7:*:*:*:*:*:*:*
cpe:2.3:a:objective_development:little_snitch:3.7.1:*:*:*:*:*:*:*
cpe:2.3:a:objective_development:little_snitch:3.7.2:*:*:*:*:*:*:*
cpe:2.3:a:objective_development:little_snitch:3.7.3:*:*:*:*:*:*:*

EPSS

Процентиль: 16%
0.0005
Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

github логотип

GHSA-c2hm-xxfw-m5qj

CVSS3: 7.8
github
больше 3 лет назад

Little Snitch version 3.0 through 3.7.3 suffer from a local privilege escalation vulnerability in the installer part. The vulnerability is related to the installation of the configuration file "at.obdev.littlesnitchd.plist" which gets installed to /Library/LaunchDaemons.

EPSS

Процентиль: 16%
0.0005
Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

NVD-CWE-noinfo