CVE-2013-7127 — Apple MAC OS X vulnerability

CWE-3102 documents2 sources

Severity

2.1LOWNVD

EPSS

0.1%

top 69.00%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X Apple Safari

Timeline

PublishedDec 17

Latest updateMay 17

Description

Apple Safari 6.0.5 on Mac OS X 10.7.5 and 10.8.5 stores cleartext credentials in LastSession.plist, which allows local users to obtain sensitive information by reading this file.

CVSS vector

AV:L/AC:L/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages2 packages

▶NVDapple/safari6.0.5

▶NVDapple/mac_os_x10.7.5, 10.8.5+1

🔴Vulnerability Details

GHSA

GHSA-7982-hxvv-5vq2: Apple Safari 6↗2022-05-17

▶