CVE-2014-8838 in Mac OS Xالمعلومات

الملخص

بحسب MITRE

The Security component in Apple OS X before 10.10.2 does not properly process cached information about app certificates, which allows attackers to bypass the Gatekeeper protection mechanism by leveraging access to a revoked Developer ID certificate for signing a crafted app.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

حجز

14/11/2014

إفشاء

30/01/2015

الاعتدال

تمت الموافقة

إدخال

VDB-68911

EPSS

0.00854

KEV

لا

النشاطات

منخفض جدًا

المصادر

Interested in the pricing of exploits?

See the underground prices here!