Lucene search
K

98 matches found

Positive Technologies
Positive Technologies
added 2023/03/27 12:0 a.m.4 views

PT-2023-21632 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 Description: A buffer overflow issue was addressed with improved memory handling. This issue may allow an app to cause unexpected system termination or write kernel memory. Recommendations: For macOS versions prio...

7.8CVSS7.2AI score0.00215EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 4:32 a.m.3 views

SUSE CVE-2018-4089

An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS before 10.13.3 is affected. Safari before 11.0.3 is affected. tvOS before 11.2.5 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial o...

8.8CVSS8.6AI score0.06468EPSS
Exploits3References4
Vulnrichment
Vulnrichment
added 2022/09/23 6:59 p.m.5 views

CVE-2022-32786

An issue in the handling of environment variables was addressed with improved validation. This issue is fixed in Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. An app may be able to modify protected parts of the file system...

6.2AI score0.02629EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/09/12 12:0 a.m.4 views

PT-2022-26605 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13 Description: This issue allows a user in a privileged network position to potentially track user activity. The issue was addressed with improved data protection. Recommendations: For versions prior to 13, update to...

5.9CVSS7.5AI score0.00688EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2022/09/12 12:0 a.m.1 views

PT-2022-21544 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.7 macOS versions prior to 12.6 Description: A configuration issue was addressed with additional restrictions, which may have allowed an app to access user-sensitive data. Recommendations: For macOS versions prior to...

5.5CVSS6AI score0.00264EPSS
Exploits0References11
ATTACKERKB
ATTACKERKB
added 2022/05/26 8:15 p.m.2 views

CVE-2022-26756

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in Security Update 2022-004 Catalina, macOS Monterey 12.4, macOS Big Sur 11.6.6. An application may be able to execute arbitrary code with kernel privileges...

9.3CVSS6.1AI score0.00922EPSS
Exploits0References4
The Hacker News
The Hacker News
added 2022/05/26 11:24 a.m.24 views

Experts Warn of Rise in ChromeLoader Malware Hijacking Users' Browsers

A malvertising threat is witnessing a new surge in activity since its emergence earlier this year. Dubbed ChromeLoader, the malware is a "pervasive and persistent browser hijacker that modifies its victims' browser settings and redirects user traffic to advertisement websites," Aedan Russell of R...

3AI score
Exploits0
CNVD
CNVD
added 2021/05/19 12:0 a.m.12 views

Telegram Heap Buffer Overflow Vulnerability

Telegram is an instant messaging mobile application. A heap buffer overflow vulnerability exists in the custom derived VGradientCache :: generateGradientColorTable function of the Rlottie library for Telegram Android version prior to 7.1.0 2090, iOS version prior to 7.1, and macOS version prior t...

7.1CVSS6.7AI score0.01218EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/04/27 12:0 a.m.4 views

Apple macOS 权限许可和访问控制问题漏洞

Apple macOS is a proprietary operating system developed by Apple Inc. for Mac computers. A privilege-granting and access-control issue vulnerability exists in macOS, which arises from the system not properly securing the login window component in macOS. The following products and versions are...

4.9CVSS5.1AI score0.00305EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2020/10/01 12:0 a.m.66 views

macOS 10.15.x < 10.15.6 / 10.14.x < 10.14.6 Security Update 2020-004 / 10.13.x < 10.13.6 Security Update 2020-004

The remote host is running a version of macOS / Mac OS X that is 10.13.x prior to 10.13.6 Security Update 2020-004, 10.14.x prior to 10.14.6 Security Update 2020-004, or 10.15.x prior to 10.15.6. It is, therefore, affected by multiple vulnerabilities, including the following: - A vulnerability wa...

10CVSS7.3AI score0.08036EPSS
Exploits13References75
Tenable Nessus
Tenable Nessus
added 2018/12/21 12:0 a.m.43 views

macOS 10.14.x < 10.14.2 Multiple Vulnerabilities

The remote host is running a version of macOS / Mac OS X that is 10.14.x prior to 10.14.2. It is, therefore, affected by multiple vulnerabilities related to the following components : - Airport - AMD - Carbon Core - Disk Images - Intel Graphics Driver - Kernel - WindowServer Note that successful...

9.3CVSS7.1AI score0.03092EPSS
Exploits3References14
OSV
OSV
added 2018/06/08 6:29 p.m.4 views

CVE-2018-4193

An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "Windows Server" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...

7.8CVSS6.1AI score0.0569EPSS
Exploits2References4
OSV
OSV
added 2017/07/20 4:29 p.m.3 views

CVE-2017-7031

An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue involves the "Foundation" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted file...

7.8CVSS6.1AI score0.0181EPSS
Exploits0References3
OSV
OSV
added 2017/05/22 5:29 a.m.6 views

CVE-2017-6991

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted we...

8.8CVSS7.6AI score0.01788EPSS
Exploits0References3
OSV
OSV
added 2017/04/02 1:59 a.m.0 views

CVE-2017-2449

An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "Bluetooth" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service use-after-free via a crafted app...

7.8CVSS6.1AI score0.01299EPSS
Exploits0References3
OSV
OSV
added 2017/02/20 8:59 a.m.2 views

CVE-2016-4678

An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "AppleSMC" component. It allows local users to gain privileges or cause a denial of service NULL pointer dereference via unspecified vectors...

7.8CVSS5.8AI score0.00321EPSS
Exploits0References3
OSV
OSV
added 2017/02/20 8:59 a.m.2 views

CVE-2016-4663

An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "NVIDIA Graphics Drivers" component. It allows attackers to cause a denial of service memory corruption via a crafted app...

5.5CVSS5.8AI score0.00787EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2016/02/09 12:0 a.m.4 views

PT-2016-1153 · Adobe +3 · Flash Player +6

Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions prior to 18.0.0.329 Adobe Flash Player versions 19.x Adobe Flash Player versions 20.x prior to 20.0.0.306 on Windows and OS X Adobe Flash Player versions prior to 11.2.202.569 on Linux Adobe AIR versions prior to...

9.3CVSS9.1AI score0.55375EPSS
Exploits14References145
Rows per page
Query Builder