Skip to main content
CVE-2014-4440 LOW Monitor

The MCX Desktop Config Profiles implementation in Apple OS X before 10.10 retains web-proxy settings from uninstalled mobile-configuration profiles, which allows remote attackers to obtain sensitive. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable. No vendor patch available.

Apple Information Disclosure Mac Os X
NVD
CVSS 2.0
2.6
EPSS
0.8%
CVE-2014-4446 LOW Monitor

Mail Service in Apple OS X Server before 4.0 does not enforce SACL changes until after a service restart, which allows remote authenticated users to bypass intended access restrictions in. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable. No vendor patch available.

Apple Privilege Escalation Os X Server
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2014-4431 LOW Monitor

Dock in Apple OS X before 10.10 does not properly manage the screen-lock state, which allows physically proximate attackers to view windows by leveraging an unattended workstation. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Apple Privilege Escalation Microsoft Mac Os X
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2014-4447 LOW Monitor

Profile Manager in Apple OS X Server before 4.0 allows local users to discover cleartext passwords by reading a file after a (1) profile setup or (2) profile edit occurs. Rated low severity (CVSS 1.9). No vendor patch available.

Apple Information Disclosure Os X Server
NVD
CVSS 2.0
1.9
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy