CVE-2010-0530Apple Quicktime vulnerability

CWE-2643 documents3 sources
Severity
2.1LOWNVD
EPSS
0.1%
top 71.08%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Quicktime
Timeline
PublishedDec 9
Latest updateMay 2

Description

Apple QuickTime before 7.6.9 on Windows sets weak permissions for the Apple Computer directory in the profile of a user account, which allows local users to obtain sensitive information by reading files in this directory.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

NVDapple/quicktime7.6.8+52

Patches

Patch: lists.apple.comPatch: lists.apple.com

🔴Vulnerability Details

2
GHSA
GHSA-ww87-xv54-4xg7: Apple QuickTime before 72022-05-02
CVEList
CVE-2010-0530: Apple QuickTime before 72010-12-09
CVE-2010-0530 — Apple Quicktime vulnerability | cvebase