CVE-2017-2425 in macOSالمعلومات

الملخص

بحسب MITRE

An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "SecurityFoundation" component. A double free vulnerability allows remote attackers to execute arbitrary code via a crafted certificate.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

01/12/2016

إفشاء

01/04/2017

الاعتدال

تمت الموافقة

إدخال

VDB-98673

CPE

جاهز

CWE

CWE-415 (مؤكد)

استغلال

تحميل

CVSS

7.8 (NVD)

EPSS

0.00320

KEV

لا

النشاطات

منخفض جدًا

القطاع

Chemical, Transportation, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-2425
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-2425
CVE Details	https://www.cvedetails.com/cve/CVE-2017-2425/

التالي ▸نظرة عامة ◂ السابق

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!