CVE-2014-1264

EUVD-2014-1342
Finder in Apple OS X before 10.9.2 does not ensure ACL integrity after the viewing of file ACL information, which allows local users to bypass intended access restrictions in opportunistic circumstances via standard filesystem operations on a file with a damaged ACL.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
3.3 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:P/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 17%
Affected Products (NVD)
VendorProductVersion
applemac_os_x
𝑥
≤ 10.9.1
applemac_os_x
10.9
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://support.apple.com/kb/HT6150
http://support.apple.com/kb/HT6150