|CVSS SCORE||2.1, (AV:L/AC:L/Au:N/C:P/I:N/A:N)|
The specific flaw exists within IOKit. The issue lies in the storage of kernel pointers in an object's data structure that could be retrieved from userland. An attacker can leverage this vulnerability to leak kernel pointers.
Apple has issued an update to correct this vulnerability. More details can be found at:
|CREDIT||Ian Beer of Google Project Zero