CVE-2016-1805Improper Access Control in Apple MAC OS X

CWE-284Improper Access Control10 documents6 sources
Severity
7.8HIGHNVD
EPSS
0.2%
top 56.11%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apple MAC OS XApple OS X EL Capitan V10.11.5 AND Security Update 2016-003
Timeline
PublishedMay 20
Latest updateMay 17

Description

CoreStorage in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context via a crafted app.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

NVDapple/mac_os_x10.11.4

🔴Vulnerability Details

1
GHSA
GHSA-q4v9-prc2-r77h: CoreStorage in Apple OS X before 102022-05-17

📋Vendor Advisories

2
Red Hat
kernel: pipe buffer state corruption after unsuccessful atomic read from pipe2016-02-02
Apple
CVE-2016-1805: OS X El Capitan v10.11.5 and Security Update 2016-003

💬Community

1
Bugzilla
CVE-2016-0774 kernel: pipe buffer state corruption after unsuccessful atomic read from pipe2016-02-02