Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

48 matches found

CNVD
CNVDadded 2015/07/02 12:0 a.m.5 views

Apple MAC OS X TOCTOU Competitive Conditions Vulnerability

Apple Mac OS X is a commercial operating system. A TOCTOU competition condition exists when Apple Mac OS X checksums kernel extension paths, allowing a local attacker to exploit a vulnerability to load unchecked kernel extensions...

6.9CVSS6.4AI score0.00257EPSS
Exploits0References1
NVD
NVDadded 2013/09/19 10:28 a.m.19 views

CVE-2013-5145

kextd in Kext Management in Apple iOS before 7 does not properly verify authorization for IPC messages, which allows local users to 1 load or 2 unload kernel extensions via a crafted message...

6.3CVSS5.4AI score0.00342EPSS
Exploits0References5
Prion
Prionadded 2013/09/19 10:28 a.m.18 views

Authorization

kextd in Kext Management in Apple iOS before 7 does not properly verify authorization for IPC messages, which allows local users to 1 load or 2 unload kernel extensions via a crafted message...

6.3CVSS5.7AI score0.00342EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2013/09/19 10:0 a.m.23 views

CVE-2013-5145

kextd in Kext Management in Apple iOS before 7 does not properly verify authorization for IPC messages, which allows local users to 1 load or 2 unload kernel extensions via a crafted message...

5.4AI score0.00342EPSS
Exploits0References5
CVE
CVEadded 2013/09/19 10:0 a.m.46 views

CVE-2013-5145

CVE-2013-5145 involves kextd in Apple iOS before 7, where IPC message authorization is not properly verified. This allows a local attacker to load or unload kernel extensions via a crafted message, representing a local privilege escalation risk. Root cause: missing authorization checks in kextd’s...

6.3CVSS5.5AI score0.00342EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessusadded 2013/03/16 12:0 a.m.28 views

Mac OS X 10.8 < 10.8.3 Multiple Vulnerabilities (Security Update 2013-001)

Binary data 6717.prm...

9.3CVSS7.1AI score0.99449EPSS
Exploits36References15
Cvelist
Cvelistadded 2012/11/03 5:0 p.m.26 views

CVE-2012-3749

The extensions APIs in the kernel in Apple iOS before 6.0.1 provide kernel addresses in responses that contain an OSBundleMachOHeaders key, which makes it easier for remote attackers to bypass the ASLR protection mechanism via a crafted app...

5.5AI score0.02232EPSS
Exploits0References7
securityvulns
securityvulnsadded 2006/09/14 12:0 a.m.40 views

[Full-disclosure] [NETRAGARD-20060822 SECURITY ADVISORY] [ APPLE COMPUTER CORPORATION KEXTLOAD VULNERABILITY + ROXIO TOAST TITANUM 7 HELPER APP - LOCAL ROOT COMROMISE]

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Netragard, L.L.C Advisory Strategic Reconnaissance Team ------------------------------------------------ http://www.netragard.com -- "We make I.T. Safe." About Netragard - ---------------------------------------------------------------------- Netragar...

0.1AI score
Exploits0
Rows per page
Query Builder