CVE-2008-1027Apple MAC OS X vulnerability

CWE-2643 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.4%
top 36.31%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple MAC OS XApple MAC OS X Server
Timeline
PublishedJun 2
Latest updateMay 1

Description

Apple Filing Protocol (AFP) Server in Apple Mac OS X before 10.5.3 does not verify that requested files and directories are inside shared folders, which allows remote attackers to read arbitrary files via unspecified AFP traffic.

CVSS vector

AV:N/AC:M/C:P/I:N/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages2 packages

NVDapple/mac_os_x_server4 versions+3
NVDapple/mac_os_x4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-gg46-xqwr-52fq: Apple Filing Protocol (AFP) Server in Apple Mac OS X before 102022-05-01
CVEList
CVE-2008-1027: Apple Filing Protocol (AFP) Server in Apple Mac OS X before 102008-06-02
CVE-2008-1027 — Apple MAC OS X vulnerability | cvebase