The EFI component in Apple OS X before 10.11 allows physically proximate attackers to modify firmware during the EFI update process by inserting an Apple Ethernet Thunderbolt adapter with crafted code in an Option ROM, aka a "Thunderstrike" issue. NOTE: this issue exists because of an incomplete fix for CVE-2014-4498.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: apple

Published: 2015-10-09T01:00:00

Updated: 2024-08-06T07:06:34.207Z

Reserved: 2015-08-06T00:00:00

Link: CVE-2015-5914

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2015-10-09T05:59:32.827

Modified: 2024-11-21T02:34:07.450

Link: CVE-2015-5914

cve-icon Redhat

No data.