31 matches found
Google Chrome < 143.0.7499.109 Multiple Vulnerabilities
The version of Google Chrome installed on the remote macOS host is prior to 143.0.7499.109. It is, therefore, affected by multiple vulnerabilities as referenced in the 202512stable-channel-update-for-desktop10 advisory. - Use after free in Password Manager in Google Chrome prior to 143.0.7499.110...
PT-2024-36370 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 15.2 Description: An out-of-bounds access issue was addressed with improved bounds checking. This issue may allow an attacker to cause unexpected system termination or arbitrary code execution in DCP firmware...
PT-2024-30964 · Apple · Ios +2
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 15 iOS versions prior to 18 iPadOS versions prior to 18 Description: A permissions issue allowed a malicious app with root privileges to potentially access keyboard input and location information without user consent...
PT-2024-29071 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 14.6 Description: A downgrade issue was addressed with additional code-signing restrictions. This issue may allow an app to bypass Privacy preferences. Recommendations: For versions prior to 14.6, update to macOS Sonom...
PT-2024-22082
Name of the Vulnerable Software and Affected Versions Safari versions prior to 17.5 tvOS versions prior to 17.5 visionOS versions prior to 1.2 iOS versions prior to 17.5 iPadOS versions prior to 17.5 watchOS versions prior to 10.5 macOS Sonoma versions prior to 14.5 Description The issue was...
PT-2023-27442 · Apple · Ipados +7
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.6 macOS Monterey versions prior to 12.7 tvOS versions prior to 17 watchOS versions prior to 10 iOS versions prior to 17 iPadOS versions prior to 17 macOS Sonoma versions prior to 14 Description: An out-of-bounds rea...
PT-2023-21617 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 Description: A user may be able to cause a denial-of-service due to an issue that was addressed with improved state management. Recommendations: For versions prior to 13.3, update to macOS Ventura 13.3 to resolve...
PT-2023-19021 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.2 Description: A buffer overflow issue was addressed with improved memory handling. Mounting a maliciously crafted Samba network share may lead to arbitrary code execution. Recommendations: For versions prior to 13....
PT-2022-7249 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13 Description: The issue is related to a buffer overflow in memory, which can allow an attacker to execute arbitrary code with kernel privileges. The problem was addressed with improved memory handling. An app may be...
PT-2022-21600 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13 Description: An access issue was addressed with additional sandbox restrictions on third-party apps. This issue allows an app to potentially record audio with paired AirPods. Recommendations: For versions prior to 1...
PT-2022-21478 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 12.5 Security Update 2022-005 Catalina is also a fixed version, implying that versions prior to this update are affected. Description: An out-of-bounds read issue was addressed with improved bounds checking. A user in ...
PT-2021-4732 · Apple · Ipados +4
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.3 iOS versions prior to 14.5 iPadOS versions prior to 14.5 watchOS versions prior to 7.4 tvOS versions prior to 14.5 Description: The issue is related to a buffer out-of-bounds read in memory, which can be exploited...
PT-2019-19071 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 10.14.4 Description: A use-after-free issue was addressed with improved memory management, allowing an application to potentially gain elevated privileges. Recommendations: For versions prior to 10.14.4, update to macO...
CVE-2018-4138
An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. The issue involves the "NVIDIA Graphics Drivers" component. It allows attackers to bypass intended memory-read restrictions via a crafted app...
CVE-2017-13890
An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. macOS before 10.13 is affected. The issue involves the "CoreTypes" component. It allows remote attackers to trigger disk-image mounting via a crafted web site...
CVE-2017-13839
An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Spotlight" component. It allows local users to see results for other users' files...
CVE-2017-7155
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service memory corruption via a crafted app...
CVE-2017-13846
An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the third-party "PCRE" product. Versions before 8.40 allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact...
CVE-2017-13834
An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the "Kernel" component. It allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via a crafted mach binary...
CVE-2017-13810
An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the "Kernel" component. It allows local users to obtain sensitive information by leveraging an error in packet counters...