Vulnerability Details : CVE-2016-7583
An issue was discovered in certain Apple products. iCloud before 6.0.1 is affected. The issue involves the setup subsystem in the "iCloud" component. It allows local users to gain privileges via a crafted dynamic library in an unspecified directory.
Products affected by CVE-2016-7583
- cpe:2.3:a:apple:icloud:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2016-7583
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 6 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2016-7583
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.6
|
MEDIUM | AV:L/AC:L/Au:N/C:P/I:P/A:P |
3.9
|
6.4
|
NIST | |
7.8
|
HIGH | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST |
CWE ids for CVE-2016-7583
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2016-7583
-
https://support.apple.com/HT207273
About the security content of iCloud for Windows 6.0.1 - Apple SupportVendor Advisory
-
http://www.securityfocus.com/bid/94570
iCloud Setup for Windows CVE-2016-7583 Remote Code Execution VulnerabilityThird Party Advisory;VDB Entry
Jump to