Mac Os X@* Security Vulnerabilities and Issues — Page 45 of Mac Os X@* CVE List

4.7CVSS3.7AI score0.00018EPSS

CVE-2014-4498

The CPU Software in Apple OS X before 10.10.2 allows physically proximate attackers to modify firmware during the EFI update process by inserting a Thunderbolt device with crafted code in an Option ROM, aka the "Thunderstrike" issue.

2.1CVSS2.8AI score0.00061EPSS

CVE-2014-4499

The App Store process in CommerceKit Framework in Apple OS X before 10.10.2 places Apple ID credentials in App Store logs, which allows local users to obtain sensitive information by reading a file.

5CVSS3.4AI score0.00161EPSS

CVE-2014-8831

security_taskgate in Apple OS X before 10.10.2 allows attackers to read group-ACL-restricted keychain items of arbitrary apps via a crafted app with a signature from a (1) self-signed certificate or (2) Developer ID certificate.

4.9CVSS2.8AI score0.00061EPSS

CVE-2014-8832

The indexing functionality in Spotlight in Apple OS X before 10.10.2 writes memory contents to an external hard drive, which allows local users to obtain sensitive information by reading from this drive.

CVE•added 2015/07/03 1:59 a.m.•42 views

CVE-2015-3675

The default configuration of the Apache HTTP Server on Apple OS X before 10.10.4 does not enable the mod_hfs_apple module, which allows remote attackers to bypass HTTP authentication via a crafted URL.

5CVSS3.9AI score0.00317EPSS

CVE•added 2015/07/03 1:59 a.m.•42 views

CVE-2015-3683

The Bluetooth HCI interface implementation in Apple OS X before 10.10.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

9.3CVSS5AI score0.02351EPSS

CVE•added 2015/07/03 1:59 a.m.•42 views

CVE-2015-3693

Apple Mac EFI before 2015-001, as used in OS X before 10.10.4 and other products, does not properly set refresh rates for DDR3 RAM, which might make it easier for remote attackers to conduct row-hammer attacks, and consequently gain privileges or cause a denial of service (memory corruption), by tr...

9.3CVSS4.4AI score0.23698EPSS

CVE•added 2015/07/03 2:0 a.m.•42 views

CVE-2015-3714

Apple OS X before 10.10.4 does not properly consider custom resource rules during app signature verification, which allows attackers to bypass intended launch restrictions via a modified app.

5CVSS3.7AI score0.00291EPSS

CVE•added 2015/07/03 2:0 a.m.•42 views

CVE-2015-3715

The code-signing implementation in Apple OS X before 10.10.4 does not properly consider libraries that are external to an application bundle, which allows attackers to bypass intended launch restrictions via a crafted library.

6.8CVSS3.6AI score0.00568EPSS

CVE•added 2015/08/16 11:59 p.m.•42 views

CVE-2015-3768

Integer overflow in the kernel in Apple iOS before 8.4.1 and OS X before 10.10.5 allows attackers to execute arbitrary code in a privileged context via a crafted app that makes unspecified IOKit API calls.

9.3CVSS8.1AI score0.0101EPSS

CVE•added 2015/08/16 11:59 p.m.•42 views

CVE-2015-3780

The Bluetooth subsystem in Apple OS X before 10.10.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app.

4.3CVSS7.6AI score0.00627EPSS

CVE•added 2015/08/16 11:59 p.m.•42 views

CVE-2015-3783

SceneKit in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.

7.5CVSS9.4AI score0.13427EPSS

CVE•added 2015/08/17 12:0 a.m.•42 views

CVE-2015-5771

Quartz Composer Framework in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted QuickTime file.

6.8CVSS9.3AI score0.02022EPSS

CVE•added 2015/08/17 12:1 a.m.•42 views

CVE-2015-5777

CoreMedia Playback in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-5778.

6.8CVSS8.7AI score0.01866EPSS

CVE•added 2015/09/18 10:59 a.m.•42 views

CVE-2015-5831

NetworkExtension in the kernel in Apple iOS before 9 does not properly initialize an unspecified data structure, which allows attackers to obtain sensitive memory-layout information via a crafted app.

5CVSS4.8AI score0.00524EPSS

CVE•added 2015/09/18 11:0 a.m.•42 views

CVE-2015-5851

The convenience initializer in the Multipeer Connectivity component in Apple iOS before 9 does not require an encrypted session, which allows local users to obtain cleartext multipeer data via an encrypted-to-unencrypted downgrade attack.

2.1CVSS5.4AI score0.00063EPSS

CVE•added 2015/12/11 11:59 a.m.•42 views

CVE-2015-7067

IOThunderboltFamily in Apple OS X before 10.11.2 allows local users to cause a denial of service (NULL pointer dereference) via an unspecified userclient type.

2.1CVSS7.6AI score0.00055EPSS

CVE•added 2015/12/11 11:59 a.m.•42 views

CVE-2015-7078

Use-after-free vulnerability in Hypervisor in Apple OS X before 10.11.2 allows local users to gain privileges via vectors involving VM objects.

7.2CVSS7.7AI score0.00293EPSS

CVE•added 2016/01/10 3:59 a.m.•42 views

CVE-2015-7116

libxml2 in Apple iOS before 9.2, OS X before 10.11.2, and tvOS before 9.1 allows remote attackers to obtain sensitive information or cause a denial of service (memory corruption) via a crafted XML document, a different vulnerability than CVE-2015-7115.

4.3CVSS4.8AI score0.00828EPSS

CVE•added 2015/10/09 5:59 a.m.•42 views

CVE-2015-7760

libxpc in launchd in Apple OS X before 10.11 does not restrict the creation of processes for network connections, which allows remote attackers to cause a denial of service (resource consumption) by repeatedly connecting to the SSH port, a different vulnerability than CVE-2015-7761.

5CVSS6.3AI score0.00734EPSS

CVE•added 2016/02/01 11:59 a.m.•42 views

CVE-2016-1716

AppleGraphicsPowerManagement in Apple OS X before 10.11.3 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.

7.8CVSS6.7AI score0.00047EPSS

CVE•added 2016/03/24 1:59 a.m.•42 views

CVE-2016-1759

The kernel in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

9.3CVSS6.8AI score0.00241EPSS

9.3CVSS8AI score0.00363EPSS

CVE-2016-1792

The AMD subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

9.3CVSS8AI score0.01284EPSS

CVE-2016-1800

Captive Network Assistant in Apple OS X before 10.11.5 mishandles a custom URL scheme, which allows user-assisted remote attackers to execute arbitrary code via unspecified vectors.

7.8CVSS7.5AI score0.0021EPSS

CVE-2016-1809

Disk Utility in Apple OS X before 10.11.5 uses incorrect encryption keys for disk images, which has unspecified impact and attack vectors.

5.5CVSS5.3AI score0.00454EPSS

CVE-2016-1814

IOAcceleratorFamily in Apple iOS before 9.3.2, OS X before 10.11.5, and tvOS before 9.2.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted app.

7.8CVSS7AI score0.00099EPSS

CVE-2016-1832

libc in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.

9.3CVSS7.6AI score0.01909EPSS

CVE-2016-1846

The nvCommandQueue::GetHandleIndex method in the NVIDIA Graphics Drivers subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference and memory corruption) via a crafted app.

CVE•added 2016/06/19 8:59 p.m.•42 views

CVE-2016-1861

The NVIDIA Graphics Drivers subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1846.

9.3CVSS7.6AI score0.01909EPSS

7.8CVSS7.3AI score0.00209EPSS

CVE-2016-4594

The Sandbox Profiles component in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows attackers to access the process list via a crafted app that makes an API call.

9.8CVSS9.1AI score0.0169EPSS

CVE-2016-4598

QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted image.

8.8CVSS8.6AI score0.00836EPSS

CVE-2016-4602

QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FlashPix bitmap image, a different vulnerability than CVE-2016-4596, CVE-2016-4597, and CVE-2016-4600.

CVE•added 2017/02/20 8:59 a.m.•42 views

CVE-2016-4617

An issue was discovered in certain Apple products. macOS before 10.12 is affected. The issue involves a sandbox escape related to launchctl process spawning in the "libxpc" component.

8.8CVSS7.8AI score0.00058EPSS

9.3CVSS8.4AI score0.00363EPSS

CVE-2016-4621

libc++abi in Apple OS X before 10.11.6 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

8.8CVSS9AI score0.01109EPSS

CVE-2016-4630

ImageIO in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted EXR image with B44 compression.