CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-40307

An attacker with standard privileges on macOS when requesting administrator privileges from the application can submit input which causes a buffer overflow resulting in a crash of the application. This could make the application unavailable and allow reading or modification of data.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.3%

CVSS Severity

CVSS v3 Score 6.3

References

https://github.com/SAP/macOS-enterprise-privileges/security/advisories/GHSA-rgq4-wxpj-5jv9
https://github.com/SAP/macOS-enterprise-privileges/security/advisories/GHSA-rgq4-wxpj-5jv9

Products affected by CVE-2023-40307

Sap » Privileges » Version: 1.0.3

cpe:2.3:a:sap:privileges:1.0.3
Sap » Privileges » Version: 1.0.5

cpe:2.3:a:sap:privileges:1.0.5
Sap » Privileges » Version: 1.5.0

cpe:2.3:a:sap:privileges:1.5.0
Sap » Privileges » Version: 1.5.1

cpe:2.3:a:sap:privileges:1.5.1
Sap » Privileges » Version: 1.5.2

cpe:2.3:a:sap:privileges:1.5.2
Sap » Privileges » Version: 1.5.3

cpe:2.3:a:sap:privileges:1.5.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-40307

Products

Pricing

Contact Us