CVE-2012-0649

CWE-362 — Race Condition4 documents4 sources

Severity

6.9MEDIUM

EPSS

0.1%

top 69.91%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X Apple MAC OS X Server

Timeline

PublishedMay 11

Latest updateMay 17

Description

Race condition in the initialization routine in blued in Bluetooth in Apple Mac OS X before 10.7.4 allows local users to gain privileges via vectors involving a temporary file.

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages2 packages

▶NVDapple/mac_os_x10.7.3+69

▶NVDapple/mac_os_x_server10.7.3+69

🔴Vulnerability Details

GHSA

GHSA-56xm-mxwc-qp9q: Race condition in the initialization routine in blued in Bluetooth in Apple Mac OS X before 10↗2022-05-17

▶

CVEList

CVE-2012-0649: Race condition in the initialization routine in blued in Bluetooth in Apple Mac OS X before 10↗2012-05-11

▶

💬Community

Bugzilla

CVE-2012-5055 Spring Security: Ability to determine if username is valid via DaoAuthenticationProvider↗2012-12-11

▶