Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
AppleGarageband*

9 matches found

CVE
CVEadded 2009/08/04 4:30 p.m.1350 views

CVE-2009-2198

Apple GarageBand before 5.1 reconfigures Safari to accept all cookies regardless of domain name, which makes it easier for remote web servers to track users.

4.3CVSS6.2AI score0.00497EPSS
CVE
CVEadded 2017/02/20 8:59 a.m.464 views

CVE-2017-2372

An issue was discovered in certain Apple products. GarageBand before 10.1.5 is affected. Logic Pro X before 10.3 is affected. The issue involves the "Projects" component, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted GarageBan...

8.8CVSS8.4AI score0.0085EPSS
CVE
CVEadded 2021/09/08 3:15 p.m.433 views

CVE-2021-30654

This issue was addressed by removing additional entitlements. This issue is fixed in GarageBand 10.4.3. A local attacker may be able to read sensitive information.

5.5CVSS4.8AI score0.00129EPSS
CVE
CVEadded 2022/03/18 6:15 p.m.118 views

CVE-2022-22664

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Logic Pro 10.7.3, GarageBand 10.4.6, macOS Monterey 12.3. Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution.

7.8CVSS7.4AI score0.00413EPSS
CVE
CVEadded 2022/03/18 6:15 p.m.107 views

CVE-2022-22657

A memory initialization issue was addressed with improved memory handling. This issue is fixed in Logic Pro 10.7.3, GarageBand 10.4.6, macOS Monterey 12.3. Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution.

7.8CVSS7.5AI score0.00316EPSS
CVE
CVEadded 2024/03/12 9:15 p.m.89 views

CVE-2024-23300

A use-after-free issue was addressed with improved memory management. This issue is fixed in GarageBand 10.4.11. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution.

7.8CVSS7AI score0.00077EPSS
CVE
CVEadded 2025/01/30 7:15 p.m.72 views

CVE-2024-44142

The issue was addressed with improved bounds checks. This issue is fixed in GarageBand 10.4.12. Processing a maliciously crafted image may lead to arbitrary code execution.

7.8CVSS6.8AI score0.00017EPSS
CVE
CVEadded 2017/02/20 8:59 a.m.67 views

CVE-2017-2374

An issue was discovered in certain Apple products. GarageBand before 10.1.6 is affected. The issue involves the "Projects" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted GarageBand project file.

7.8CVSS8AI score0.00628EPSS
CVE
CVEadded 2024/12/20 4:15 a.m.61 views

CVE-2023-42867

This issue was addressed with improved validation of the process entitlement and Team ID. This issue is fixed in GarageBand 10.4.9. An app may be able to gain root privileges.

7.8CVSS6.4AI score0.00083EPSS