The EFI component in Apple OS X before 10.11 allows physically proximate attackers to modify firmware during the EFI update process by inserting an Apple Ethernet Thunderbolt adapter with crafted code in an Option ROM, aka a "Thunderstrike" issue. NOTE: this issue exists because of an incomplete fix for CVE-2014-4498.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apple
Published: 2015-10-09T01:00:00
Updated: 2024-08-06T07:06:34.207Z
Reserved: 2015-08-06T00:00:00
Link: CVE-2015-5914
Vulnrichment
No data.
NVD
Status : Modified
Published: 2015-10-09T05:59:32.827
Modified: 2024-11-21T02:34:07.450
Link: CVE-2015-5914
Redhat
No data.