CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple SceneKit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the renderi...

3.3CVSS5.8AI score0.00031EPSS

Exploits0References1

Zero Day Initiative•added 2024/10/31 12:0 a.m.•7 views

Apple SceneKit Improper Validation of Array Index Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the Scenekit framework is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the Sceneki...

8.8CVSS6.9AI score0.00023EPSS

Exploits0References1

Talos•added 2020/11/12 12:0 a.m.•100 views

Pixar OpenUSD Binary File Format Compressed Value Reps Code Execution Vulnerabilities

Summary A heap overflow vulnerability exists in the Pixar OpenUSD 20.05 while parsing compressed value rep arrays in binary USD files. A specially crafted malformed file can trigger a heap overflow, which can result in remote code execution. To trigger this vulnerability, the victim needs to acce...

8.8CVSS7.8AI score0.01498EPSS

Exploits1

Talos•added 2020/11/12 12:0 a.m.•59 views

Pixar OpenUSD binary file format compressed sections code execution vulnerabilities

Summary A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. A specially crafted malformed file can trigger a heap overflow which can result in remote code execution. To trigger this vulnerability, the victim needs to open a...

8.8CVSS7.9AI score0.00213EPSS

Exploits4

Tenable Nessus•added 2019/04/10 12:0 a.m.•44 views

Mac OS X 10.10.x < 10.10.3 Multiple Vulnerabilities

Binary data 700510.prm...

10CVSS6.4AI score0.91945EPSS

Exploits59References82

CNVD•added 2016/05/22 12:0 a.m.•3 views

Apple OS X El Capitan SceneKit Denial of Service Vulnerability

Apple OS X El Capitan is an operating system on Apple devices. An unspecified security vulnerability exists in Apple OS X El Capitan SceneKit, which allows attackers to exploit the vulnerability to crash applications or execute arbitrary code...

7.8CVSS7.2AI score0.00531EPSS

Exploits1References1

NVD•added 2016/05/20 11:0 a.m.•18 views

CVE-2016-1850

SceneKit in Apple OS X before 10.11.5 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted file...

7.8CVSS8.2AI score0.00531EPSS

Exploits1References4

Prion•added 2016/05/20 11:0 a.m.•18 views

Memory corruption

SceneKit in Apple OS X before 10.11.5 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted file...

6.8CVSS7.9AI score0.00531EPSS

Exploits1References4Affected Software1

CVE•added 2016/05/20 10:0 a.m.•55 views

CVE-2016-1850

CVE-2016-1850 affects Apple OS X SceneKit: a type-confusion/memory-corruption issue in COLLADA (.dae) handling allows a crafted DAE file to trigger remote code execution (via SceneKit parsing of DAE, not limited to crash). Exploitation described in Seebug details; patch released with OS X El Capi...

7.8CVSS7.8AI score0.00531EPSS

Exploits1References4Affected Software1

Cvelist•added 2016/05/20 10:0 a.m.•24 views

CVE-2016-1850

SceneKit in Apple OS X before 10.11.5 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted file...

7.8AI score0.00531EPSS

Exploits1References4

Exploit DB•added 2015/09/22 12:0 a.m.•22 views

Apple qlmanage - SceneKit::daeElement::setElementName Heap Overflow

Source: https://code.google.com/p/google-security-research/issues/detail?id=467 There is a heap overflow in daeElement::setElementName. The vulnerable method uses a fixed size 128 bytes heap-allocated buffer to copy the name of an arbitrary element. By setting the name of the element to something...

7.4AI score

Exploits0

exploitpack•added 2015/09/22 12:0 a.m.•10 views

Apple qlmanage - SceneKit::daeElement::setElementName Heap Overflow

Apple qlmanage - SceneKit::daeElement::setElementName Heap Overflow Source: https://code.google.com/p/google-security-research/issues/detail?id=467 There is a heap overflow in daeElement::setElementName. The vulnerable method uses a fixed size 128 bytes heap-allocated buffer to copy the name of a...

7.4AI score

Exploits0

CNVD•added 2015/08/19 12:0 a.m.•1 views

Apple OS X SceneKit Memory Corruption Vulnerability

Apple OS X is a BSD-based operating system distributed by Apple. A memory corruption vulnerability exists in Apple OS X SceneKit, which allows an attacker to construct a malicious file and trick a user into parsing it, which could crash an application or execute arbitrary code...

7.5CVSS7.3AI score0.18398EPSS

Exploits0References1

CNVD•added 2015/08/19 12:0 a.m.•2 views

Apple OS X SceneKit Heap Overflow Vulnerability

Apple OS X is a BSD-based operating system distributed by Apple. A heap overflow vulnerability in Apple OS X SceneKit's handling of special Collada files allows an attacker to construct a malicious file and trick a user into parsing it, which could crash an application or execute arbitrary code...

6.8CVSS7.4AI score0.01723EPSS

Exploits0References1

NVD•added 2015/08/17 12:0 a.m.•11 views

CVE-2015-5772

Heap-based buffer overflow in SceneKit in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code via a crafted Collada file...

6.8CVSS7.6AI score0.01723EPSS

Exploits0References4

Prion•added 2015/08/17 12:0 a.m.•9 views

Heap overflow

Heap-based buffer overflow in SceneKit in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code via a crafted Collada file...

6.8CVSS8.1AI score0.01723EPSS

Exploits0References4Affected Software1