厂商或团体 apple 的搜索结果 (3781)

CVE-2017-7149(发布:2017-10-22 21:29:14)NMPS
CVSS2.1

[原文]An issue was discovered in certain Apple products. macOS before 10.13 Supplemental Update is affected. The issue involves the "StorageKit" component. It allows attackers to discover passwords for APFS encrypted volumes by reading Disk Utility hints, because the stored hint value was accidentally set to the password itself, not the entered hint value.

CVE-2017-7150(发布:2017-10-22 21:29:14)NMPS
CVSS2.1

[原文]An issue was discovered in certain Apple products. macOS before 10.13 Supplemental Update is affected. The issue involves the "Security" component. It allows attackers to bypass the keychain access prompt, and consequently extract passwords, via a synthetic click.

CVE-2017-7146(发布:2017-10-22 21:29:14)NM
CVSS5.0

[原文]An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Security" component. It allows attackers to track users across installs via a crafted app that leverages Keychain data mishandling.

CVE-2017-7147(发布:2017-10-22 21:29:14)NMPS
CVSS5.0

[原文]An issue was discovered in certain Apple products. The Apple Support app before 1.2 for iOS is affected. The issue involves the "Analytics" component. It allows remote attackers to obtain sensitive analytics information by leveraging its presence in a cleartext HTTP transmission to an Adobe Marketing Cloud server operated for Apple, as demonstrated by information about the installation date and time.

CVE-2017-7148(发布:2017-10-22 21:29:14)NM
CVSS4.3

[原文]An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Location Framework" component. It allows attackers to obtain sensitive location information via a crafted app that reads the location variable.

CVE-2017-7145(发布:2017-10-22 21:29:14)NM
CVSS5.0

[原文]An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Time" component. The "Setting Time Zone" feature mishandles the possibility of using location data.

12345678下一页尾页 第1页 / 共631页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站