Keychain Access in Apple OS X before 10.11.2 and tvOS before 9.1 improperly interacts with Keychain Agent, which allows attackers to spoof the Keychain Server via unspecified vectors.
Base Score: 5
Impact Score: 2.9
Exploitability Score: 10
cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:* versions up to 9.0 (inclusive)
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* versions up to 10.11.1 (inclusive)
View all (5 total)