Mac Os X Security Vulnerabilities and Issues — Mac Os X CVE List

Lucene search

AppleMac Os X

26 matches found

CVE•added 2017/10/23 1:29 a.m.•77 views

CVE-2017-7083

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "CFNetwork Proxies" component. It allows remote attackers to cause a denial of service.

4.9CVSS5.6AI score0.01772EPSS

CVE•added 2017/10/23 1:29 a.m.•71 views

CVE-2017-7114

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial ...

9.3CVSS8.1AI score0.00183EPSS

CVE•added 2017/10/23 1:29 a.m.•68 views

CVE-2017-7086

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "libc" component. It allows remote attackers to cause a denial of service (resource consumption) via a craft...

7.8CVSS6.9AI score0.04633EPSS

CVE•added 2017/10/23 1:29 a.m.•68 views

CVE-2017-7128

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the third-party "SQLite" product. Versions before 3.19.3 allow remote attackers to cause a denial of service (ap...

9.8CVSS8.6AI score0.01729EPSS

CVE•added 2017/10/23 1:29 a.m.•68 views

CVE-2017-7130

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the third-party "SQLite" product. Versions before 3.19.3 allow remote attackers to cause a denial of service (ap...

9.8CVSS8.6AI score0.01729EPSS

CVE•added 2017/10/23 1:29 a.m.•67 views

CVE-2017-7080

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Security" component. It allows remote attackers to bypass intended certificate-trust restrictions via a rev...

7.5CVSS6.9AI score0.00441EPSS

CVE•added 2017/10/23 1:29 a.m.•66 views

CVE-2017-7078

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. The issue involves the "Mail Drafts" component. It allows remote attackers to obtain sensitive information by reading unintended cleartext transmissions.

5.3CVSS5.2AI score0.00208EPSS

CVE•added 2017/10/23 1:29 a.m.•63 views

CVE-2017-7127

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. iCloud before 7.0 on Windows is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "SQLite" component. It allows attackers to execute arbitrary code ...

9.3CVSS8.1AI score0.00172EPSS

CVE•added 2017/10/23 1:29 a.m.•62 views

CVE-2017-7074

An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "AppSandbox" component. It allows attackers to cause a denial of service via a crafted app.

5.5CVSS5.7AI score0.00183EPSS

CVE•added 2017/10/23 1:29 a.m.•61 views

CVE-2017-7141

An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Mail" component. It allows remote attackers to bypass an intended off value of the "Load remote content in messages" setting, and consequently discover an e-mail recipient's IP address, via an...

5.3CVSS5.9AI score0.00194EPSS

CVE•added 2017/10/23 1:29 a.m.•60 views

CVE-2017-7124

An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact.

9.8CVSS8.8AI score0.00788EPSS

CVE•added 2017/10/23 1:29 a.m.•60 views

CVE-2017-7129

An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the third-party "SQLite" product. Versions before 3.19.3 allow remote attackers to cause a denial of service (ap...

9.8CVSS8.6AI score0.01729EPSS

CVE•added 2017/10/23 1:29 a.m.•60 views

CVE-2017-7149

An issue was discovered in certain Apple products. macOS before 10.13 Supplemental Update is affected. The issue involves the "StorageKit" component. It allows attackers to discover passwords for APFS encrypted volumes by reading Disk Utility hints, because the stored hint value was accidentally se...

7.8CVSS6.6AI score0.00108EPSS

CVE•added 2017/10/23 1:29 a.m.•59 views

CVE-2017-7122

9.8CVSS8.8AI score0.00788EPSS

CVE•added 2017/10/23 1:29 a.m.•57 views

CVE-2017-7077

An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "IOFireWireFamily" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

9.3CVSS8.1AI score0.00165EPSS

CVE•added 2017/10/23 1:29 a.m.•57 views

CVE-2017-7150

An issue was discovered in certain Apple products. macOS before 10.13 Supplemental Update is affected. The issue involves the "Security" component. It allows attackers to bypass the keychain access prompt, and consequently extract passwords, via a synthetic click.

5.5CVSS5.2AI score0.00069EPSS

CVE•added 2017/10/23 1:29 a.m.•56 views

CVE-2017-7084

An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Application Firewall" component. It allows remote attackers to bypass intended settings in opportunistic circumstances by leveraging incorrect handling of a denied setting after an upgrade.

4.3CVSS5.3AI score0.00658EPSS

CVE•added 2017/10/23 1:29 a.m.•55 views

CVE-2017-7126

9.8CVSS8.8AI score0.01583EPSS

CVE•added 2017/10/23 1:29 a.m.•54 views

CVE-2017-7138

An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Directory Utility" component. It allows local users to discover the Apple ID of the computer's owner.

3.3CVSS4.7AI score0.00064EPSS

CVE•added 2017/10/23 1:29 a.m.•53 views

CVE-2017-7119

An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "IOFireWireFamily" component. It allows attackers to bypass intended memory-read restrictions via a crafted app.

5.5CVSS5.6AI score0.00249EPSS

CVE•added 2017/10/23 1:29 a.m.•52 views

CVE-2017-7121

9.8CVSS8.8AI score0.00788EPSS

CVE•added 2017/10/23 1:29 a.m.•52 views

CVE-2017-7123

9.8CVSS8.8AI score0.00788EPSS

CVE•added 2017/10/23 1:29 a.m.•52 views

CVE-2017-7125

9.8CVSS8.8AI score0.00788EPSS

CVE•added 2017/10/23 1:29 a.m.•51 views

CVE-2017-7082

An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Screen Lock" component. It allows physically proximate attackers to read Application Firewall prompts.

2.4CVSS4.8AI score0.00075EPSS

CVE•added 2017/10/23 1:29 a.m.•51 views

CVE-2017-7143

An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Captive Network Assistant" component. It allows remote attackers to discover cleartext passwords in opportunistic circumstances by sniffing the network during use of the captive portal browser...

5.5CVSS6AI score0.00074EPSS

CVE•added 2017/10/23 1:29 a.m.•42 views

CVE-2017-7076

An issue was discovered in certain Apple products. Xcode before 9 is affected. The issue involves the "ld64" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Mach-O file.

7.8CVSS8.7AI score0.00502EPSS