Vulnerability & Exploit Database

Back to search

OS X update for Postfix (CVE-2017-10140)

Severity CVSS Published Added Modified
5 (AV:L/AC:L/Au:N/C:P/I:P/A:P) November 20, 2017 November 20, 2017 May 23, 2018

Description

Postfix before 2.11.10, 3.0.x before 3.0.10, 3.1.x before 3.1.6, and 3.2.x before 3.2.2 might allow local users to gain privileges by leveraging undocumented functionality in Berkeley DB 2.x and later, related to reading settings from DB_CONFIG in the current directory.

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

apple-osx-security-update-2017-001-sierra

Related Vulnerabilities