Lucene search

K

310 matches found

CVE
CVE
added 2019/04/03 6:29 p.m.70 views

CVE-2018-4351

A memory initialization issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14.

5.5CVSS6.3AI score0.00226EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.70 views

CVE-2018-4411

A memory corruption issue was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14.

7.8CVSS7.2AI score0.00452EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.70 views

CVE-2018-4412

A memory corruption issue was addressed with improved input validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5, iTunes 12.9 for Windows, iCloud for Windows 7.7.

7.8CVSS7.5AI score0.00402EPSS
CVE
CVE
added 2019/03/05 4:29 p.m.70 views

CVE-2019-6230

A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3,macOS Mojave 10.14.3,tvOS 12.1.2,watchOS 5.1.3. A malicious application may be able to break out of its sandbox.

8.6CVSS6.8AI score0.00352EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.70 views

CVE-2019-8517

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. Processing a maliciously crafted font may result in the disclosure of process memory.

6.5CVSS6.1AI score0.00478EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.70 views

CVE-2019-8540

A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout.

7.1CVSS5.4AI score0.0085EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.70 views

CVE-2019-8545

A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A local user may be able to cause unexpected system termination or read kernel memory.

7.1CVSS6.5AI score0.00171EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.70 views

CVE-2019-8568

A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1. A local user may be able to modify protected parts of the file system.

5.5CVSS5.4AI score0.00063EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.70 views

CVE-2019-8657

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. Parsing a maliciously crafted office document may lead to an unexpected application termination or arbitrary code execution.

8.8CVSS7.8AI score0.00645EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.70 views

CVE-2019-8794

A validation issue was addressed with improved input sanitization. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1, tvOS 13.2, watchOS 6.1. An application may be able to read restricted memory.

5.5CVSS5.3AI score0.00359EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.69 views

CVE-2018-4321

A validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12.

5.3CVSS5.8AI score0.00298EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.69 views

CVE-2018-4348

A validation issue was addressed with improved logic. This issue affected versions prior to macOS Mojave 10.14.

5.5CVSS6.2AI score0.00107EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.69 views

CVE-2018-4396

A validation issue was addressed with improved input sanitization. This issue affected versions prior to macOS Mojave 10.14.

5.5CVSS6.3AI score0.00197EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.69 views

CVE-2018-4400

A validation issue was addressed with improved logic. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, watchOS 5.1.

5.5CVSS5.4AI score0.00196EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.69 views

CVE-2018-4415

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14.1.

9.3CVSS6.9AI score0.00288EPSS
CVE
CVE
added 2019/03/05 4:29 p.m.69 views

CVE-2019-6202

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, watchOS 5.1.3. A malicious application may be able to elevate privileges.

7.8CVSS6.3AI score0.00259EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.69 views

CVE-2019-8504

A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4. A local user may be able to read kernel memory.

5.5CVSS5.2AI score0.00112EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.68 views

CVE-2018-4342

A configuration issue was addressed with additional restrictions. This issue affected versions prior to macOS Mojave 10.14.1.

5.5CVSS5.8AI score0.00055EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.68 views

CVE-2018-4424

A buffer overflow was addressed with improved size validation. This issue affected versions prior to macOS Mojave 10.14.1.

9.3CVSS7.5AI score0.00157EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.68 views

CVE-2019-8511

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, watchOS 5.2. A malicious application may be able to elevate privileges.

7.8CVSS7.2AI score0.00513EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.68 views

CVE-2019-8648

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. A remote attacker may be able to cause arbitrary code execution.

9.8CVSS8.3AI score0.01127EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.67 views

CVE-2018-4295

An input validation issue was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14.

9.8CVSS7.2AI score0.00528EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.67 views

CVE-2018-4355

A configuration issue was addressed with additional restrictions. This issue affected versions prior to iOS 12, macOS Mojave 10.14.

5.5CVSS6.2AI score0.00197EPSS
CVE
CVE
added 2019/03/05 4:29 p.m.67 views

CVE-2019-6219

A denial of service issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, watchOS 5.1.3. Processing a maliciously crafted message may lead to a denial of service.

7.5CVSS6.9AI score0.01042EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.67 views

CVE-2019-8635

A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.5. An application may be able to execute arbitrary code with system privileges.

7.8CVSS7.6AI score0.00119EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.67 views

CVE-2019-8781

A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15. An application may be able to execute arbitrary code with kernel privileges.

9.3CVSS7.5AI score0.15909EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.66 views

CVE-2018-4423

A logic issue was addressed with improved validation. This issue affected versions prior to macOS Mojave 10.14.1.

7.8CVSS6.8AI score0.00217EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.66 views

CVE-2019-8519

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Mojave 10.14.4. An application may be able to read restricted memory.

5.5CVSS5.6AI score0.00129EPSS
CVE
CVE
added 2019/01/11 6:29 p.m.65 views

CVE-2017-13886

In macOS High Sierra before 10.13.2, an access issue existed with privileged WiFi system configuration. This issue was addressed with additional restrictions.

6.5CVSS6.3AI score0.00353EPSS
CVE
CVE
added 2019/01/11 6:29 p.m.65 views

CVE-2017-13887

In macOS High Sierra before 10.13.2, a logic issue existed in APFS when deleting keys during hibernation. This was addressed with improved state management.

7.5CVSS6.9AI score0.00241EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.65 views

CVE-2018-4324

A permissions issue existed in the handling of the Apple ID. This issue was addressed with improved access controls. This issue affected versions prior to macOS Mojave 10.14.

5.5CVSS5.5AI score0.00146EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.65 views

CVE-2018-4336

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.

9.3CVSS7.9AI score0.00185EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.65 views

CVE-2018-4427

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to: iOS 12.1, watchOS 5.1.2, tvOS 12.1.1, macOS High Sierra 10.13.6 Security Update 2018-003 High Sierra, macOS Sierra 10.12.6 Security Update 2018-006.

9.3CVSS7.2AI score0.00185EPSS
CVE
CVE
added 2019/03/05 4:29 p.m.65 views

CVE-2019-6211

A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS8.2AI score0.00643EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.65 views

CVE-2019-6239

This issue was addressed with improved handling of file metadata. This issue is fixed in macOS Mojave 10.14.4. A malicious application may bypass Gatekeeper checks.

7.8CVSS7.2AI score0.0005EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.65 views

CVE-2019-8606

A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Mojave 10.14.5. A local user may be able to load unsigned kernel extensions.

7CVSS5.8AI score0.00098EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.65 views

CVE-2019-8801

A dynamic library loading issue existed in iTunes setup. This was addressed with improved path searching. This issue is fixed in macOS Catalina 10.15.1, iTunes for Windows 12.10.2. Running the iTunes installer in an untrusted directory may result in arbitrary code execution.

7.8CVSS7.8AI score0.00161EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.64 views

CVE-2018-4410

A memory corruption issue was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14.1.

9.3CVSS6.9AI score0.00171EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.64 views

CVE-2018-4422

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14.1.

9.3CVSS7.2AI score0.00387EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.64 views

CVE-2019-8508

A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Mojave 10.14.4. Mounting a maliciously crafted NFS network share may lead to arbitrary code execution with system privileges.

7.8CVSS8.2AI score0.00118EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.64 views

CVE-2019-8510

An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout.

5.5CVSS5.3AI score0.00068EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.64 views

CVE-2019-8520

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Mojave 10.14.4. A malicious application may be able to read restricted memory.

5.5CVSS5.7AI score0.0006EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.63 views

CVE-2018-4389

An inconsistent user interface issue was addressed with improved state management. This issue affected versions prior to macOS Mojave 10.14.1.

6.5CVSS6.3AI score0.00255EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.63 views

CVE-2019-8772

An issue existed in the handling of links in encrypted PDFs. This issue was addressed by adding a confirmation prompt. This issue is fixed in macOS Catalina 10.15. An attacker may be able to exfiltrate the contents of an encrypted PDF.

7.5CVSS7.5AI score0.00348EPSS
CVE
CVE
added 2019/01/11 6:29 p.m.62 views

CVE-2018-4189

In iOS before 11.2.5, macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, watchOS before 4.2.2, and tvOS before 11.2.5, a memory corruption issue exists and was addressed with improved memory handling.

10CVSS8.6AI score0.00757EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.62 views

CVE-2018-4248

An out-of-bounds read was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2.

7.5CVSS5.8AI score0.02821EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.62 views

CVE-2018-4289

An information disclosure issue was addressed by removing the vulnerable code. This issue affected versions prior to macOS High Sierra 10.13.6.

7.1CVSS5.6AI score0.00216EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.62 views

CVE-2018-4403

This issue was addressed by removing additional entitlements. This issue affected versions prior to macOS Mojave 10.14.1.

5.5CVSS6.3AI score0.00226EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.62 views

CVE-2019-8522

A logic issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.4. An encrypted volume may be unmounted and remounted by a different user without prompting for the password.

5.5CVSS5.9AI score0.00107EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.62 views

CVE-2019-8555

A buffer overflow was addressed with improved size validation. This issue is fixed in macOS Mojave 10.14.4. A malicious application may be able to execute arbitrary code with kernel privileges.

9.3CVSS8AI score0.00465EPSS
Total number of security vulnerabilities310