CVE-2011-3216Apple MAC OS X vulnerability

CWE-2643 documents3 sources
Severity
2.1LOWNVD
EPSS
0.1%
top 81.77%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple MAC OS XApple MAC OS X Server
Timeline
PublishedOct 14
Latest updateMay 17

Description

The kernel in Apple Mac OS X before 10.7.2 does not properly implement the sticky bit for directories, which might allow local users to bypass intended permissions and delete files via an unlink system call.

CVSS vector

AV:L/AC:L/C:N/I:P/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages2 packages

NVDapple/mac_os_x10.7.1+67
NVDapple/mac_os_x_server10.7.1+67

🔴Vulnerability Details

2
GHSA
GHSA-c8w7-vpqv-v7f3: The kernel in Apple Mac OS X before 102022-05-17
CVEList
CVE-2011-3216: The kernel in Apple Mac OS X before 102011-10-14
CVE-2011-3216 — Apple MAC OS X vulnerability | cvebase