Mac Os X@10.11.6 Security Vulnerabilities and Issues — Mac Os X@10.11.6 CVE List

Lucene search

AppleMac Os X10.11.6

8 matches found

CVE•added 2017/06/20 1:29 a.m.•5998 views

CVE-2017-7668

The HTTP strict parsing changes added in Apache httpd 2.2.32 and 2.4.24 introduced a bug in token list parsing, which allows ap_find_token() to search past the end of its input string. By maliciously crafting a sequence of request headers, an attacker may be able to cause a segmentation fault, or t...

7.5CVSS8.4AI score0.7189EPSS

CVE•added 2020/02/03 6:15 p.m.•68 views

CVE-2016-4676

A Cross-origin vulnerability exists in WebKit in Apple Safari before 10.0.1 when processing location attributes, which could let a remote malicious user obtain sensitive information.

7.5CVSS6.7AI score0.01783EPSS

CVE•added 2021/12/23 8:15 p.m.•66 views

CVE-2017-13905

A race condition was addressed with additional validation. This issue is fixed in tvOS 11.2, iOS 11.2, macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan, watchOS 4.2. An application may be able to gain elevated privileges.

8.1CVSS6.9AI score0.00607EPSS

CVE•added 2021/12/23 8:15 p.m.•59 views

CVE-2017-13906

A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan, macOS High Sierra 10.13. A malicious application may be able to elevate privileges.

7.8CVSS7.7AI score0.00222EPSS

CVE•added 2021/12/23 8:15 p.m.•57 views

CVE-2017-13907

A state management issue was addressed with improved state validation. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan. The screen lock may unexpectedly remain unlocked.

6.8CVSS6.2AI score0.00061EPSS

CVE•added 2021/12/23 8:15 p.m.•55 views

CVE-2017-13892

An issue existed in the handling of Contact sharing. This issue was addressed with improved handling of user information. This issue is fixed in macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan. Sharing contact information may lead to unexpected da...

7.5CVSS6.5AI score0.00322EPSS

CVE•added 2021/12/23 8:15 p.m.•51 views

CVE-2017-13908

An issue in handling file permissions was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan, macOS High Sierra 10.13. A local attacker may be able to execute non-executable text files via an...

7.8CVSS7.5AI score0.00034EPSS

CVE•added 2021/12/23 8:15 p.m.•46 views

CVE-2018-4478

A validation issue was addressed with improved logic. This issue is fixed in macOS High Sierra 10.13.5, Security Update 2018-003 Sierra, Security Update 2018-003 El Capitan. An attacker with physical access to a device may be able to elevate privileges.

7.2CVSS5.2AI score0.00042EPSS