CVE-2014-8838 in Mac OS Xinformazioni

Riassunto

di MITRE

The Security component in Apple OS X before 10.10.2 does not properly process cached information about app certificates, which allows attackers to bypass the Gatekeeper protection mechanism by leveraging access to a revoked Developer ID certificate for signing a crafted app.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Prenotare

14/11/2014

Divulgazione

30/01/2015

Moderazione

accettato

CPE

pronto

EPSS

0.00854

KEV

no

Attività

molto basso

Fonti

Do you know our Splunk app?

Download it now for free!