PT-2016-6079 · Apple · Os X+1

Abhinav Bansal

·

Published

2016-07-22

·

Updated

2017-09-01

·

CVE-2016-4645

CVSS v3.1

3.3

Low

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Name of the Vulnerable Software and Affected Versions Apple OS X versions prior to 10.11.6
Description The issue concerns weak permissions for web-browser cookies in CFNetwork, allowing local users to obtain sensitive information.
Recommendations For Apple OS X versions prior to 10.11.6, update to version 10.11.6 or later to resolve the issue.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2016-4645

Affected Products

Cfnetwork
Os X