CVE-2005-2520 — Apple MAC OS X vulnerability

2 documents2 sources

Severity

2.1LOWNVD

EPSS

0.1%

top 76.92%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X

Timeline

PublishedAug 19

Latest updateMay 1

Description

The password assistant in Mac OS X 10.4 to 10.4.2, when used to create multiple accounts from the same process, does not reset the suggested password list when the assistant is displayed, which allows attackers to view recently used passwords.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

▶NVDapple/mac_os_x10.4, 10.4.1, 10.4.2+2

Patches

Patch: lists.apple.com ↗Patch: lists.apple.com ↗Patch: lists.apple.com ↗

🔴Vulnerability Details

GHSA

GHSA-v8qh-9rgj-4vwv: The password assistant in Mac OS X 10↗2022-05-01

▶