CVE-2011-3463

CWE-287Improper Authentication4 documents4 sources
Severity
7.2HIGH
EPSS
0.0%
top 86.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple MAC OS XApple MAC OS X Server
Timeline
PublishedFeb 2
Latest updateMay 17

Description

WebDAV Sharing in Apple Mac OS X 10.7.x before 10.7.3 does not properly perform authentication, which allows local users to gain privileges by leveraging access to (1) the server or (2) a bound directory.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

NVDapple/mac_os_x_server10.7.0, 10.7.1, 10.7.2+2
NVDapple/mac_os_x10.7.0, 10.7.1, 10.7.2+2

🔴Vulnerability Details

2
GHSA
GHSA-pcmh-g8hp-48rx: WebDAV Sharing in Apple Mac OS X 102022-05-17
CVEList
CVE-2011-3463: WebDAV Sharing in Apple Mac OS X 102012-02-02

💬Community

1
Bugzilla
CVE-2011-3481 cyrus-imapd: NULL pointer dereference via crafted References header in email2011-09-14
CVE-2011-3463 (HIGH CVSS 7.2) | WebDAV Sharing in Apple Mac OS X 10 | cvebase.io