CVE-2014-4446

CWE-2643 documents3 sources
Severity
2.1LOW
EPSS
0.1%
top 69.27%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple OS X Server
Timeline
PublishedOct 18
Latest updateMay 17

Description

Mail Service in Apple OS X Server before 4.0 does not enforce SACL changes until after a service restart, which allows remote authenticated users to bypass intended access restrictions in opportunistic circumstances by leveraging a change made by an administrator.

CVSS vector

AV:N/AC:H/C:P/I:N/A:NExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-5gxv-qqxp-mxvh: Mail Service in Apple OS X Server before 42022-05-17
CVEList
CVE-2014-4446: Mail Service in Apple OS X Server before 42014-10-18
CVE-2014-4446 (LOW CVSS 2.1) | Mail Service in Apple OS X Server b | cvebase.io