← volver
CVE-2017-2402

CVE-2017-2402

EPSS 1.6%
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves mishandling of profile uninstall actions in the "MCX Client" component when a profile has multiple payloads. It allows remote attackers to bypass intended access restrictions by leveraging Active Directory certificate trust that should not have remained.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://support.apple.com/HT207615http://www.securityfocus.com/bid/97140http://www.securitytracker.com/id/1038138