CVE-2007-0724 — Apple MAC OS X vulnerability

2 documents2 sources

Severity

6.9MEDIUMNVD

EPSS

0.1%

top 73.46%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X Apple MAC OS X Server

Timeline

PublishedMar 13

Latest updateMay 1

Description

The IOKit HID interface in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 does not sufficiently limit access to certain controls, which allows local users to gain privileges by using HID device events to read keystrokes from the console.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages2 packages

▶NVDapple/mac_os_x10 versions+9

▶NVDapple/mac_os_x_server9 versions+8

Patches

Patch: lists.apple.com ↗Patch: lists.apple.com ↗

🔴Vulnerability Details

GHSA

GHSA-qr2q-h6xj-43mm: The IOKit HID interface in Apple Mac OS X 10↗2022-05-01

▶