CVE-2006-1451 — Apple MAC OS X vulnerability

2 documents2 sources

Severity

7.2HIGHNVD

EPSS

0.1%

top 78.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X

Timeline

PublishedMay 12

Latest updateMay 1

Description

MySQL Manager in Apple Mac OS X 10.3.9 and 10.4.6, when setting up a new MySQL database server, does not use the "New MySQL root password" that is provided, which causes the MySQL root password to be blank and allows local users to gain full privileges to that database.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDapple/mac_os_x10.3.9, 10.4.6+1

Patches

Patch: lists.apple.com ↗Patch: lists.apple.com ↗

🔴Vulnerability Details

GHSA

GHSA-v45q-492w-4369: MySQL Manager in Apple Mac OS X 10↗2022-05-01

▶