Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The EFI component in Apple OS X before 10.11 allows physically proximate attackers to modify firmware during the EFI update process by inserting an Apple Ethernet Thunderbolt adapter with crafted code in an Option ROM, aka a "Thunderstrike" issue. NOTE: this issue exists because of an incomplete fix for CVE-2014-4498.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple OS X EFI组件代码注入漏洞
Vulnerability Description
Apple OS X是美国苹果(Apple)公司为Mac计算机所开发的一套专用操作系统。EFI是其中的一个固件升级接口组件。 Apple OS X 10.10.5及之前版本的EFI组件中存在安全漏洞。物理位置邻近的攻击者可通过在Option ROM中插入带有特制代码的Apple Ethernet Thunderbolt适配器,利用该漏洞在EFI升级过程中修改固件。
CVSS Information
N/A
Vulnerability Type
N/A