Lucene search
+L

74 matches found

NVD
NVD
added 2017/05/22 5:29 a.m.21 views

CVE-2017-6979

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "IOSurface" component. A race condition allows attackers to execute arbitrary code in a...

7.6CVSS6.2AI score0.03638EPSS
Exploits1References7
OSV
OSV
added 2017/05/22 5:29 a.m.4 views

CVE-2017-6979

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "IOSurface" component. A race condition allows attackers to execute arbitrary code in a...

7CVSS6.1AI score0.03638EPSS
Exploits1References7
Prion
Prion
added 2017/05/22 5:29 a.m.16 views

Race condition

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "IOSurface" component. A race condition allows attackers to execute arbitrary code in a...

7.6CVSS6.1AI score0.03638EPSS
Exploits1References7Affected Software4
Cvelist
Cvelist
added 2017/05/22 4:54 a.m.27 views

CVE-2017-6979

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "IOSurface" component. A race condition allows attackers to execute arbitrary code in a...

7.4AI score0.03638EPSS
Exploits1References7
CVE
CVE
added 2017/05/22 4:54 a.m.70 views

CVE-2017-6979

CVE-2017-6979 involves the IOSurface kernel extension and a race condition that can let a crafted app execute code with kernel privileges on affected Apple platforms (iOS before 10.3.2, macOS before 10.12.5, tvOS before 10.2.1, watchOS before 3.2.2). Apple’s security content entries confirm a ker...

7.6CVSS7.3AI score0.03638EPSS
Exploits1References7Affected Software4
Tenable Nessus
Tenable Nessus
added 2017/05/18 12:0 a.m.22 views

Apple TV < 10.2.1 Multiple Vulnerabilities

Binary data 700118.prm...

9.8CVSS8.4AI score0.11484EPSS
Exploits34References32
Tenable Nessus
Tenable Nessus
added 2017/05/18 12:0 a.m.91 views

Mac OS X Multiple Vulnerabilities (Security Update 2017-002)

The remote host is running a version of Mac OS X 10.10.5 or 10.11.6 that is missing a security update. It is therefore, affected by multiple vulnerabilities : - A memory corruption issue exists in the Sandbox component that allows an unauthenticated, remote attacker to escape an application...

9.8CVSS7.7AI score0.06809EPSS
Exploits10References15
Tenable Nessus
Tenable Nessus
added 2017/05/17 12:0 a.m.21 views

Mac OS X 10.x < 10.12.5 Multiple Vulnerabilities

Binary data 700119.prm...

9.8CVSS8.5AI score0.11484EPSS
Exploits25References42
Tenable Nessus
Tenable Nessus
added 2017/05/17 12:0 a.m.33 views

Apple iOS < 10.3.2 Multiple Vulnerabilities

Binary data 700116.prm...

9.8CVSS8.4AI score0.14349EPSS
Exploits52References52
Apple
Apple
added 2017/05/15 12:0 a.m.172 views

About the security content of iOS 10.3.2

About the security content of iOS 10.3.2 This document describes the security content of iOS 10.3.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

9.8CVSS0.7AI score0.14349EPSS
Exploits59References1Affected Software1
Apple
Apple
added 2017/05/15 12:0 a.m.100 views

About the security content of watchOS 3.2.2

About the security content of watchOS 3.2.2 This document describes the security content of watchOS 3.2.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...

9.8CVSS0.6AI score0.11484EPSS
Exploits17References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/03/09 12:0 a.m.9 views

The vulnerability of the Mac OS X operating system, which allows a perpetrator to gain access to protected information

The vulnerability of the IOSurface component in the Mac OS X operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow an intruder, acting locally, to gain access to protected information about the kernel’s memory layout using uncertain vector...

2.1CVSS6.3AI score0.00319EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2017/02/20 8:59 a.m.24 views

CVE-2016-7620

An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "IOSurface" component. It allows local users to obtain sensitive kernel memory-layout information via unspecified vectors...

3.3CVSS2.2AI score0.00319EPSS
Exploits0References3
OSV
OSV
added 2017/02/20 8:59 a.m.1 views

CVE-2016-7620

An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "IOSurface" component. It allows local users to obtain sensitive kernel memory-layout information via unspecified vectors...

3.3CVSS5.8AI score0.00319EPSS
Exploits0References3
Prion
Prion
added 2017/02/20 8:59 a.m.21 views

Design/Logic Flaw

An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "IOSurface" component. It allows local users to obtain sensitive kernel memory-layout information via unspecified vectors...

2.1CVSS5AI score0.00319EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2017/02/20 8:35 a.m.28 views

CVE-2016-7620

An issue was discovered in certain Apple products. macOS before 10.12.2 is affected. The issue involves the "IOSurface" component. It allows local users to obtain sensitive kernel memory-layout information via unspecified vectors...

2.6AI score0.00319EPSS
Exploits0References3
CVE
CVE
added 2017/02/20 8:35 a.m.78 views

CVE-2016-7620

CVE-2016-7620 affects macOS (IOSurface) and allows a local user to obtain sensitive kernel memory-layout information. Public docs confirm the flaw exists in IOSurface and can disclose kernel-layout data via unspecified vectors. The exploitation details are not provided in the sources; the impact ...

3.3CVSS3.3AI score0.00319EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2016/12/16 12:0 a.m.4 views

Apple macOS Sierra IOSurface Component Memory Corruption Vulnerability

Apple macOS Sierra is a specialized operating system developed by Apple for Mac computers.IOSurface is one of the programming framework components. A security vulnerability exists in the IOSurface component in Apple macOS Sierra versions prior to 10.12.2. A local attacker could exploit the...

3.3CVSS6.2AI score0.00319EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/12/16 12:0 a.m.47 views

Mac OS X 10.x < 10.12.2 Multiple Vulnerabilities

Binary data 9840.prm...

9.8CVSS6.6AI score0.0676EPSS
Exploits21References48
0day.today
0day.today
added 2016/11/01 12:0 a.m.73 views

OS X / iOS Kernel - IOSurface Use-After-Free Vulnerability

Exploit for multiple platform in category local exploits Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=831 IOSurfaceRootUserClient stores a task struct pointer passed in via IOServiceOpen in the field at +0xf0 without taking a reference. By killing the corrisponding task we ca...

7.2CVSS8.7AI score0.01901EPSS
Exploits2
Rows per page
Query Builder