30 matches found
PT-2023-20467 · Mcubo Ict · Mcubo Ict
Name of the Vulnerable Software and Affected Versions: MCUBO ICT versions 6.0.2 through 10.12.4 Description: An issue in the login web page of the affected software can lead to an Observable Response Discrepancy. This discrepancy occurs because the web application provides different responses to...
MCUBO ICT 安全漏洞
Harpa Italia Mcubo ICT is a modular and simple ICT monitoring solution from Harpa Italia that allows you to control your entire ICT infrastructure in an easy and customizable way. A security vulnerability exists in MCUBO ICT version 10.12.4 and earlier versions. An attacker exploiting this...
CVE-2017-7070
CVE-2017-7070 affects macOS before 10.12.4, where the Kernel could bypass the screen-lock protection upon lid closure when a user is physically proximate. The issue is documented by NVD as a kernel-level screen-lock bypass involving macOS Sierra; the mitigation is to apply the 10.12.4 security up...
Apple Mac OS X Privilege Escalation Vulnerability (HT207797)
Apple Mac OS X is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Apple macOS Sierra AppleRAID memory corruption vulnerability
Apple macOS Sierra is a dedicated operating system for Mac computers developed by Apple, Inc. AppleRAID is one of the disk array components. A security vulnerability exists in the AppleRAID component of Apple macOS Sierra versions prior to 10.12.4. An attacker could exploit this vulnerability wit...
Apple macOS IOFireWireAVC elevation of privilege vulnerability
Apple macOS is a specialized operating system developed by Apple for Mac computers.IOFireWireAVC is one of the IO video transmission components. An elevation of privilege vulnerability exists in the IOFireWireAVC component in Apple macOS versions prior to 10.12.4. An attacker could use this...
Apple macOS Bluetooth elevation of privilege vulnerability (CNVD-2017-05624)
Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers.Bluetooth is one of the Bluetooth components. An elevation of privilege vulnerability exists in the Bluetooth component of Apple macOS versions prior to 10.12.4. An attacker could use this vulnerability to...
Apple macOS Bluetooth Elevation of Privilege Vulnerability
Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers.Bluetooth is one of the Bluetooth components. An elevation of privilege vulnerability exists in the Bluetooth component of Apple macOS versions prior to 10.12.4. An attacker could use this vulnerability to...
Apple macOS Sierra Printing Arbitrary Code Execution Vulnerability
Apple macOS Sierra is a specialized operating system developed by Apple for Mac computers.Printing is one of the printing components. An arbitrary code execution vulnerability exists in the Printing component of Apple macOS Sierra versions prior to 10.12.4. A remote attacker can exploit this...
Apple macOS Sierra IOATAFamily Denial of Service Vulnerability
Apple macOS Sierra is a specialized operating system developed by Apple for Mac computers.IOATAFamily is one of the ATI chip driver components. A denial of service vulnerability exists in the IOATAFamily component in Apple macOS Sierra versions prior to 10.12.4. An attacker can exploit this...
CVE-2017-2474
An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10.12.4 is affected. tvOS before 10.2 is affected. watchOS before 3.2 is affected. The issue involves the "Kernel" component. An off-by-one error allows attackers to execute arbitrary code in a privileged...
CVE-2017-2472
An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10.12.4 is affected. tvOS before 10.2 is affected. watchOS before 3.2 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or cause...
CVE-2017-2437
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireAVC" component. It allows local users to gain privileges or cause a denial of service memory corruption via unspecified vectors...
CVE-2017-2438
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "AppleRAID" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service use-after-free via a crafted app...
CVE-2017-2436
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "IOFireWireAVC" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...
CVE-2017-2421
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "AppleGraphicsPowerManagement" component. A race condition allows attackers to execute arbitrary code in a privileged context via a crafted app...
CVE-2017-2410
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context via a crafted app...
CVE-2017-2423
An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10.12.4 is affected. The issue involves the "Security" component. It allows remote attackers to bypass intended access restrictions by leveraging a successful result from a SecKeyRawVerify API call with a...
Memory corruption
An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10.12.4 is affected. tvOS before 10.2 is affected. watchOS before 3.2 is affected. The issue involves the "Security" component. It allows remote attackers to execute arbitrary code or cause a denial of...
Out-of-bounds
An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10.12.4 is affected. tvOS before 10.2 is affected. watchOS before 3.2 is affected. The issue involves the "CoreText" component. It allows remote attackers to obtain sensitive information or cause a denial...