← Back

CVE-2011-3463

nvd nist
Published: Feb 2, 2012Modified: Apr 29, 2026

JSON object

Loading...
7.2
Vector
AV:L/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 3.9 / Impact: 10.0
Source: NVD

Description

WebDAV Sharing in Apple Mac OS X 10.7.x before 10.7.3 does not properly perform authentication, which allows local users to gain privileges by leveraging access to (1) the server or (2) a bound directory.

Affected (6)

Apple
2 products
Mac Os X
Mac Os X Server
Configuration A
6 vulnerable
Vulnerable SoftwareAffected Versions
Apple
Mac Os X
Version 10.7.0
Mac Os X
Version 10.7.1
Mac Os X
Version 10.7.2
Apple
Mac Os X Server
Version 10.7.0
Mac Os X Server
Version 10.7.1
Mac Os X Server
Version 10.7.2

Related CWEs

CWE-287
Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

References (4)

Source: product-security@apple.com
Vendor Advisory
Source: product-security@apple.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.