Vulnerability Details CVE-2011-3212
CoreStorage in Apple Mac OS X 10.7 before 10.7.2 does not ensure that all disk data is encrypted during the enabling of FileVault, which makes it easier for physically proximate attackers to obtain sensitive information by reading directly from the disk device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 29.1%
CVSS Severity
CVSS v2 Score 2.1
References
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
- http://lists.apple.com/archives/security-announce/2012/May/msg00001.html
- http://osvdb.org/76362
- http://support.apple.com/kb/HT5002
- http://support.apple.com/kb/HT5281
- http://www.securityfocus.com/bid/50085
- http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
- http://lists.apple.com/archives/security-announce/2012/May/msg00001.html
- http://osvdb.org/76362
- http://support.apple.com/kb/HT5002
- http://support.apple.com/kb/HT5281
- http://www.securityfocus.com/bid/50085
Products affected by CVE-2011-3212
-
cpe:2.3:o:apple:mac_os_x:10.7.0
-
cpe:2.3:o:apple:mac_os_x:10.7.1
-
cpe:2.3:o:apple:mac_os_x_server:10.7.0
-
cpe:2.3:o:apple:mac_os_x_server:10.7.1