CVE-2015-1151

CWE-284Improper Access Control4 documents4 sources
Severity
5.0MEDIUM
EPSS
0.4%
top 38.53%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple OS X Server
Timeline
PublishedApr 28
Latest updateMay 17

Description

Wiki Server in Apple OS X Server before 4.1 allows remote attackers to bypass intended restrictions on Activity and People pages by connecting from an iPad client.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-j8x7-f3m7-r949: Wiki Server in Apple OS X Server before 42022-05-17
CVEList
CVE-2015-1151: Wiki Server in Apple OS X Server before 42015-04-28

📋Vendor Advisories

1
Apple
CVE-2015-1151: OS X Server v4.1
CVE-2015-1151 (MEDIUM CVSS 5) | Wiki Server in Apple OS X Server be | cvebase.io