Security bypass vulnerability in CFPreferences in Apple by leveraging an unattended workstation (Mac OS X)ID: oval:org.secpod.oval:def:21771 | Date: (C)2014-11-27 (M)2023-12-07 |
Class: VULNERABILITY | Family: macos |
The host is installed with Apple Mac OS X or Server before 10.10 and is prone to a security bypass vulnerability. A flaw is present in the application, which does not properly enforce the "require password after sleep or screen saver begins" setting. Successful exploitation allows attackers to obtain access by leveraging an unattended workstation.
Platform: |
Apple Mac OS X 10.8 |
Apple Mac OS X 10.9 |
Apple Mac OS X 10.10 |
Apple Mac OS X Server 10.8 |
Apple Mac OS X Server 10.9 |
Apple Mac OS X Server 10.10 |