CVE-2015-7016 — Vulnetix

Try Vulnetix Request Demo

CVE-2015-7016 PUBLISHED CVSS 7.599999904632568 HIGH

The MCX Application Restrictions component in Apple OS X before 10.11.1, when Managed Configuration is enabled, mishandles provisioning profiles, which allows attackers to bypass intended entitlement restrictions and gain privileges via a crafted developer-signed app.

EPSS 0.33% · 55.9th percentile

Risk Scores

CVSS v2.0

7.599999904632568

EPSS Score

0.33%

55.9th percentile

Affected Products

Vendor	Product	Versions
apple	mac_os_x	0
n/a	n/a	n/a

Timeline

Oct 23, 2015 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

https://support.apple.com/fr-fr/HT205375 advisory
APPLE-SA-2015-10-21-4 vendor-advisory
https://support.apple.com/HT205375 url
https://nvd.nist.gov/vuln/detail/CVE-2015-7016 advisory

Open in Interactive Console →