The File Bookmark component in Apple OS X before 10.11.2 allows attackers to bypass a sandbox protection mechanism for app scoped bookmarks via a crafted pathname.
CVSS Vector
AV:N/AC:L/Au:N/C:C/I:C/A:CApple Mac Os X
OSApple≤ 10.11.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
Related vulnerabilities
CVE-2021-1870CRITICAL9.8⚠ KEVten sam produkt
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Up...
CVE-2021-1871CRITICAL9.8⚠ KEVten sam produkt
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big Sur 11.2, Security Up...
CVE-2016-4171CRITICAL9.8⚠ KEVten sam produkt
Unspecified vulnerability in Adobe Flash Player 21.0.0.242 and earlier allows remote attackers to execute arbi...
CVE-2016-1019CRITICAL9.8⚠ KEVten sam produkt
Adobe Flash Player 21.0.0.197 and earlier allows remote attackers to cause a denial of service (application cr...
CVE-2015-5119CRITICAL9.8⚠ KEVten sam produkt
Use-after-free vulnerability in the ByteArray class in the ActionScript 3 (AS3) implementation in Adobe Flash ...