Published: 01/07/2014 Updated: 22/12/2015
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

Vulnerability Summary

iBooks Commerce in Apple OS X prior to 10.9.4 places Apple ID credentials in the iBooks log, which allows local users to obtain sensitive information by reading this file.

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N
Access Complexity: LOW
Authentication: NONE
Access Vector: LOCAL
Confidentiality Impact: PARTIAL
Integrity Impact: NONE
Availability Impact: NONE

Affected Products

Vendor Product Versions
AppleMac Os X10.9, 10.9.1, 10.9.2, 10.9.3