Apple · Mac Efi · CVE-2015-3693
**Name of the Vulnerable Software and Affected Versions**
Apple Mac EFI versions before 2015-001
OS X versions prior to 10.10.4
**Description**
The issue is related to the improper setting of refresh rates for DDR3 RAM, which could facilitate row-hammer attacks. This might allow remote attackers to gain privileges or cause a denial of service due to memory corruption by triggering specific patterns of access to memory locations.
**Recommendations**
For Apple Mac EFI versions before 2015-001, update to version 2015-001 or later.
For OS X versions prior to 10.10.4, update to OS X 10.10.4 or later.