CVE-2014-1264 — Apple MAC OS X vulnerability

CWE-2642 documents2 sources

Severity

3.3LOWNVD

EPSS

0.1%

top 83.01%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X

Timeline

PublishedFeb 27

Latest updateMay 17

Description

Finder in Apple OS X before 10.9.2 does not ensure ACL integrity after the viewing of file ACL information, which allows local users to bypass intended access restrictions in opportunistic circumstances via standard filesystem operations on a file with a damaged ACL.

CVSS vector

AV:L/AC:M/C:P/I:P/A:NExploitability: 3.4 | Impact: 4.9

Affected Packages1 packages

▶NVDapple/mac_os_x10.9.1+1

🔴Vulnerability Details

GHSA

GHSA-jcrj-w3qj-9q75: Finder in Apple OS X before 10↗2022-05-17

▶