CVE-2015-3693

Name of the Vulnerable Software and Affected Versions Apple Mac EFI versions before 2015-001 OS X versions prior to 10.10.4

Description The issue is related to the improper setting of refresh rates for DDR3 RAM, which could facilitate row-hammer attacks. This might allow remote attackers to gain privileges or cause a denial of service due to memory corruption by triggering specific patterns of access to memory locations.

Recommendations For Apple Mac EFI versions before 2015-001, update to version 2015-001 or later. For OS X versions prior to 10.10.4, update to OS X 10.10.4 or later.