EDB-36745
localosxVERIFIED
Apple Mac OSX - 'Rootpipe' Local Privilege Escalation (Metasploit)
CVE-2015-1130
Metasploit4/13/2015
CVE-2015-1130
7.8HIGHThe XPC implementation in Admin Framework in Apple OS X before 10.10.3 allows local users to bypass authentication and obtain admin privileges via unspecified vectors.
Publicado: 4/10/2015Atualizado: 10/22/2025
Vulnerabilidade Explorada Conhecida (CISA)
The XPC implementation in Admin Framework in Apple OS X before 10.10.3 allows local users to bypass authentication and obtain admin privileges.
Ação Necessária:
Apply updates per vendor instructions.
Prazo:
2022-08-10
Descrição
The XPC implementation in Admin Framework in Apple OS X before 10.10.3 allows local users to bypass authentication and obtain admin privileges via unspecified vectors.
Análise IADesenvolvido por IA
Produtos Afetados
applemac_os_x
Exploits Disponíveis (2)
Referências
- http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.htmlMailing ListVendor Advisory
- http://www.osvdb.org/120418Broken Link
- http://www.securityfocus.com/bid/73982ExploitThird Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1032048Broken LinkThird Party AdvisoryVDB Entry
- https://support.apple.com/HT204659Vendor Advisory
- https://www.exploit-db.com/exploits/36692/ExploitThird Party AdvisoryVDB Entry
- http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.htmlMailing ListVendor Advisory
- http://www.osvdb.org/120418Broken Link
- http://www.securityfocus.com/bid/73982ExploitThird Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1032048Broken LinkThird Party AdvisoryVDB Entry
- https://support.apple.com/HT204659Vendor Advisory
- https://www.exploit-db.com/exploits/36692/ExploitThird Party AdvisoryVDB Entry
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2015-1130