The App Store process in CommerceKit Framework in Apple OS X prior to 10.10.2 places Apple ID credentials in App Store logs, which allows local users to obtain sensitive information by reading a file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple mac os x |