CVE-2014-4425

Sažetak

CFPreferences in Apple OS X before 10.10 does not properly enforce the "require password after sleep or screen saver begins" setting, which makes it easier for physically proximate attackers to obtain access by leveraging an unattended workstation.

Reference

http://archives.neohapsis.com/archives/bugtraq/2014-10/0101.html
http://www.securityfocus.com/bid/70630
http://www.securitytracker.com/id/1031063
https://exchange.xforce.ibmcloud.com/vulnerabilities/97640
https://support.apple.com/kb/HT6535

CVSS

Base:	4.6
Impact:	6.4
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

29-08-2017 - 01:35

Objavljeno

18-10-2014 - 01:55