CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Zero Day Initiative•added 2017/05/18 12:0 a.m.•40 views

(Pwn2Own) Apple macOS HFS Uninitialized Memory Information Disclosure Privilege Escalation Vulnerability

1.9CVSS6.9AI score0.00794EPSS

Zero Day Initiative•added 2017/05/18 12:0 a.m.•62 views

(Pwn2Own) Apple macOS AppleMultitouchDevice Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of the...

6.9CVSS3.8AI score0.0113EPSS

BDU FSTEC•added 2017/05/18 12:0 a.m.•2 views

The vulnerability of the iOS operating system and the Mac OS X operating system allows a perpetrator to trigger a service failure or execute arbitrary code in a privileged context.

The vulnerability of the iOS operating system and the Mac OS X operating system arises due to an overflow in the buffer of dynamic memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context, or cause a service failure memory corruption through a...

9.3CVSS8AI score0.02016EPSS

Exploits0References6Affected Software2

Zero Day Initiative•added 2017/05/15 12:0 a.m.•38 views

(Pwn2Own) Apple macOS WindowServer _XGetConnectionPSN Information Disclosure Vulnerability

1.9CVSS4.1AI score0.00969EPSS

Zero Day Initiative•added 2017/05/10 12:0 a.m.•48 views

Microsoft Internet Explorer Enhanced Protected Mode Sandbox Escape Vulnerability

This vulnerability allows remote attackers to escape the Enhanced Protected Mode EPM sandbox on vulnerable installations of Microsoft Internet Explorer. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specif...

4.4CVSS4.4AI score0.09816EPSS

BDU FSTEC•added 2017/04/20 12:0 a.m.•3 views

The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code in a privileged context.

The vulnerability of the Bluetooth component in the Mac OS X operating system arises from an operation that goes beyond the buffer on the stack. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in a privileged context, or to cause a service failure memory corruptio...

9.3CVSS8AI score0.01309EPSS

BDU FSTEC•added 2017/04/20 12:0 a.m.•4 views

The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code in a privileged context.

The vulnerability of the Multi-Touch component in the Mac OS X operating system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context, or cause a service failure memory...

9.3CVSS7.9AI score0.01309EPSS

BDU FSTEC•added 2017/04/13 12:0 a.m.•4 views

The vulnerabilities of operating systems Mac OS X and iOS allow attackers to execute arbitrary code in a privileged context.

The vulnerability of the Kernel component in Mac OS X and iOS systems is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code in a privileged context using a specially created application...

9.3CVSS7.9AI score0.04756EPSS

Exploits2References6Affected Software2

9.3CVSS7.9AI score0.04134EPSS

The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code in a privileged context.

The vulnerability of the Intel Graphics Driver for the Mac OS X operating system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context or cause a service failure memory...

Exploits2References3Affected Software1

9.3CVSS7.8AI score0.01299EPSS

The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code in a privileged context.

The vulnerability of the AppleRAID component in the Mac OS X operating system is related to the use of memory after it is freed. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context or cause a service failure the use of resources after they are...

9.3CVSS8.2AI score0.0564EPSS

Vulnerabilities of iOS and Mac OS X operating systems, allowing attackers to execute arbitrary code in a privileged context

The vulnerability of the Kernel component in iOS and Mac OS X operating systems arises due to buffer overflows. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in a privileged context using a specially created application...

Exploits2References6Affected Software2

9.3CVSS7.7AI score0.01299EPSS

The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code in a privileged context.

The vulnerability of the Bluetooth component in the Mac OS X operating system is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to execute arbitrary code in privileged context or trigger a service failure use of resources after they are free...