Lucene search
K

92 matches found

Zero Day Initiative
Zero Day Initiative
added 2020/05/28 12:0 a.m.62 views

Apple macOS SkyLight Integer Overflow Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the SkyLight module. The...

5.3CVSS5.3AI score0.0119EPSS
Exploits0References1
CNVD
CNVD
added 2020/05/28 12:0 a.m.1 views

Apple macOS Catalina WindowServer Component Integer Overflow Vulnerability

Apple macOS Catalina is a specialized operating system developed by Apple for Mac computers.WindowServer is an application window display server component. An integer overflow vulnerability in the WindowServer component in Apple macOS Catalina versions prior to 10.15.5 can be exploited to execute...

9.3CVSS7.7AI score0.0119EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/04/10 12:0 a.m.16 views

macOS 10.13.x < 10.13.4 Multiple Vulnerabilities

Binary data 700515.prm...

9.8CVSS9AI score0.08523EPSS
Exploits4References36
Tenable Nessus
Tenable Nessus
added 2018/12/21 12:0 a.m.43 views

macOS 10.14.x < 10.14.2 Multiple Vulnerabilities

The remote host is running a version of macOS / Mac OS X that is 10.14.x prior to 10.14.2. It is, therefore, affected by multiple vulnerabilities related to the following components : - Airport - AMD - Carbon Core - Disk Images - Intel Graphics Driver - Kernel - WindowServer Note that successful...

9.3CVSS7.1AI score0.03092EPSS
Exploits3References14
Tenable Nessus
Tenable Nessus
added 2018/12/21 12:0 a.m.87 views

macOS 10.13.6 Multiple Vulnerabilities (Security Update 2018-003)

The remote host is running macOS 10.13.6 and is missing a security update. It is therefore, affected by multiple vulnerabilities affecting the following components : - AMD - Disk Images - IOHIDFamily - Kernel - WindowServer C Tenable Network Security, Inc. include"compat.inc"; if description...

9.3CVSS6.6AI score0.03092EPSS
Exploits2References11
Tenable Nessus
Tenable Nessus
added 2018/12/21 12:0 a.m.38 views

macOS and Mac OS X Multiple Vulnerabilities (Security Update 2018-006)

The remote host is running Mac OS X 10.12.6 and is missing a security update. It is therefore, affected by multiple vulnerabilities affecting the following components : - AMD - Disk Images - IOHIDFamily - Kernel - WindowServer C Tenable Network Security, Inc. include"compat.inc"; if description...

9.3CVSS6.6AI score0.03092EPSS
Exploits2References10
CNVD
CNVD
added 2018/12/07 12:0 a.m.1 views

Apple macOS WindowServer Memory Corruption Vulnerability

Apple macOS Sierra, macOS High Sierra, and macOS Mojave are different versions of Apple's proprietary operating systems for Mac computers.WindowServer is one of the Window Service components. A security vulnerability exists in the WindowServer component in Apple macOS Sierra version 10.12.6, macO...

9.3CVSS7.7AI score0.00796EPSS
Exploits0References1
CNVD
CNVD
added 2018/12/07 12:0 a.m.2 views

Apple macOS WindowServer memory corruption vulnerability (CNVD-2018-24799)

Apple macOS Sierra, macOS High Sierra, and macOS Mojave are different versions of Apple's proprietary operating systems for Mac computers.WindowServer is one of the Window Service components. A security vulnerability exists in the WindowServer component in Apple macOS Sierra version 10.12.6, macO...

9.3CVSS7.7AI score0.00962EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2018/10/30 12:0 a.m.33 views

Apple macOS WindowServer XRegisterForKey Out-Of-Bounds Write Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the WindowServer...

4.4CVSS5AI score0.0569EPSS
Exploits2References1
CNVD
CNVD
added 2018/04/24 12:0 a.m.3 views

Apple iOS and macOS High Sierra WindowServer Security Bypass Vulnerability

Apple iOS and macOS High Sierra are products of Apple Inc. Apple iOS is an operating system developed for mobile devices; macOS High Sierra is a specialized operating system for Mac computers. windowServer is one of the Window WindowServer is one of the Window service components. A security...

7.8CVSS6.4AI score0.01167EPSS
Exploits0References1
OSV
OSV
added 2018/04/03 6:29 a.m.3 views

CVE-2018-4131

An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10.13.4 is affected. The issue involves the "WindowServer" component. It allows attackers to bypass the Secure Input Mode protection mechanism, and log keystrokes of arbitrary apps, via a crafted app that...

7.8CVSS7.4AI score0.01167EPSS
Exploits0References6
NVD
NVD
added 2018/04/03 6:29 a.m.21 views

CVE-2018-4131

An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10.13.4 is affected. The issue involves the "WindowServer" component. It allows attackers to bypass the Secure Input Mode protection mechanism, and log keystrokes of arbitrary apps, via a crafted app that...

7.8CVSS6.2AI score0.01167EPSS
Exploits0References6
Prion
Prion
added 2018/04/03 6:29 a.m.13 views

Design/Logic Flaw

An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10.13.4 is affected. The issue involves the "WindowServer" component. It allows attackers to bypass the Secure Input Mode protection mechanism, and log keystrokes of arbitrary apps, via a crafted app that...

4.3CVSS6.1AI score0.01167EPSS
Exploits0References6Affected Software2
Cvelist
Cvelist
added 2018/04/03 6:0 a.m.21 views

CVE-2018-4131

An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10.13.4 is affected. The issue involves the "WindowServer" component. It allows attackers to bypass the Secure Input Mode protection mechanism, and log keystrokes of arbitrary apps, via a crafted app that...

7.2AI score0.01167EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2018/04/02 12:0 a.m.92 views

macOS 10.13.x < 10.13.4 Multiple Vulnerabilities

The remote host is running a version of macOS / Mac OS X that is 10.13.x prior to 10.13.4. It is, therefore, affected by multiple vulnerabilities in the following components : - Admin Framework - APFS - ATS - CoreFoundation - CoreText - Disk Images - Disk Management - File System Events - iCloud...

10CVSS7.8AI score0.04722EPSS
Exploits5References43
BDU FSTEC
BDU FSTEC
added 2017/06/23 12:0 a.m.4 views

The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code in a privileged context.

The vulnerability of the WindowServer component of the Mac OS X operating system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context, or trigger a service failure memory...

9.3CVSS8AI score0.01169EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/06/15 12:0 a.m.6 views

The vulnerability of the WindowServer component of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code in a privileged context.

The vulnerability of the WindowServer component of the Mac OS X operating system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context, or trigger a service failure memory...

9.3CVSS8.1AI score0.01169EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2017/05/23 12:0 a.m.2 views

Apple macOS Sierra WindowServer memory corruption vulnerability (CNVD-2017-08135)

Apple macOS is an operating system that runs on Apple's Macintosh line of computers. A memory corruption vulnerability exists in Apple macOS Sierra WindowServer, which can be exploited by a remote attacker to submit a special application and trick the user into parsing it to execute arbitrary cod...

9.3CVSS7.4AI score0.01354EPSS
Exploits0References1
CNVD
CNVD
added 2017/05/23 12:0 a.m.2 views

Apple macOS Sierra WindowServer Memory Read Vulnerability

Apple macOS is a set of operating systems that run on Apple's Macintosh line of computers. A memory read vulnerability exists in Apple macOS Sierra WindowServer, which can be exploited by a remote attacker to submit a special application that reads sensitive memory information...

5.5CVSS6.5AI score0.00969EPSS
Exploits0References1
CNVD
CNVD
added 2017/05/23 12:0 a.m.4 views

Apple macOS Sierra WindowServer memory corruption vulnerability (CNVD-2017-08115)

Apple macOS is an operating system that runs on Apple's Macintosh line of computers. A memory corruption vulnerability exists in Apple macOS Sierra WindowServer, which can be exploited by a remote attacker to submit a special application and trick the user into parsing it to execute arbitrary cod...

9.3CVSS7.4AI score0.01169EPSS
Exploits0References1
Rows per page
Query Builder