CVE-2009-0015 — Apple MAC OS X vulnerability

CWE-2556 documents4 sources

Severity

4.9MEDIUMNVD

EPSS

0.1%

top 78.57%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X Apple MAC OS X Server

Timeline

PublishedFeb 13

Latest updateMay 2

Description

Unspecified vulnerability in fseventsd in the FSEvents framework in Apple Mac OS X 10.5.6 allows local users to obtain sensitive information (filesystem activities and directory names) via unknown vectors related to "credential management."

CVSS vector

AV:L/AC:L/C:C/I:N/A:NExploitability: 3.9 | Impact: 6.9

Affected Packages2 packages

▶NVDapple/mac_os_x10.5.6

▶NVDapple/mac_os_x_server10.5.6

Patches

Patch: lists.apple.com ↗Patch: lists.apple.com ↗

🔴Vulnerability Details

GHSA

GHSA-whw4-j4qr-78gx: Unspecified vulnerability in fseventsd in the FSEvents framework in Apple Mac OS X 10↗2022-05-02

▶

CVEList

CVE-2009-0015: Unspecified vulnerability in fseventsd in the FSEvents framework in Apple Mac OS X 10↗2009-02-13

▶

💬Community

Bugzilla

CVE-2008-5345 JRE allows unauthorized file access and connections to localhost↗2008-12-05

▶

Bugzilla

CVE-2008-5339 JavaWebStart allows unauthorized network connections↗2008-12-05

▶

Bugzilla

CVE-2008-5344 Java WebStart unprivileged local file and network access↗2008-12-05

▶