Lucene search

K
AppleMacos

2768 matches found

CVE
CVE
added 2024/05/14 3:13 p.m.76 views

CVE-2024-27837

A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sonoma 14.5. A local attacker may gain access to Keychain items.

7.7CVSS5.8AI score0.00059EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.75 views

CVE-2018-4153

An injection issue was addressed with improved validation. This issue affected versions prior to macOS Mojave 10.14.

5.9CVSS6.6AI score0.00229EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.75 views

CVE-2018-4350

A memory corruption issue was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14.

9.3CVSS6.7AI score0.00144EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.75 views

CVE-2018-4406

A denial of service issue was addressed with improved validation. This issue affected versions prior to macOS Mojave 10.14.

6.5CVSS6.7AI score0.0037EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.75 views

CVE-2018-4415

A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14.1.

9.3CVSS6.9AI score0.00288EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.75 views

CVE-2019-7293

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A local user may be able to read kernel memory.

5.5CVSS5.5AI score0.00174EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.75 views

CVE-2019-8537

An access issue was addressed with improved memory management. This issue is fixed in macOS Mojave 10.14.4. A local user may be able to view a user’s locked notes.

5.5CVSS5.6AI score0.00048EPSS
CVE
CVE
added 2020/10/27 8:15 p.m.75 views

CVE-2019-8761

This issue was addressed with improved checks. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, macOS Catalina 10.15. Parsing a maliciously crafted text file may lead to disclosure of user information.

5.5CVSS6AI score0.01139EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.75 views

CVE-2019-8788

An issue existed in the parsing of URLs. This issue was addressed with improved input validation. This issue is fixed in iOS 13.2 and iPadOS 13.2, macOS Catalina 10.15.1. Improper URL processing may lead to data exfiltration.

7.5CVSS6.7AI score0.0035EPSS
CVE
CVE
added 2020/10/27 9:15 p.m.75 views

CVE-2019-8796

A logic issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, iOS 12.4.3, watchOS 6.1, iOS 13.2 and iPadOS 13.2. AirDrop transfers may be unexpectedly accepted while in Everyone mode.

5.3CVSS5.1AI score0.00336EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.75 views

CVE-2020-27945

An integer overflow was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, macOS Big Sur 11.0.1. Processing maliciously crafted web content may lead to arbitrary code execution.

7.8CVSS8AI score0.00266EPSS
CVE
CVE
added 2020/10/22 7:15 p.m.75 views

CVE-2020-9980

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8. Processing a maliciously crafted font file may lead to arbitrary code execution.

7.8CVSS8.1AI score0.00462EPSS
CVE
CVE
added 2020/12/08 8:15 p.m.75 views

CVE-2020-9989

The issue was addressed with improved deletion. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, iOS 14.0 and iPadOS 14.0. A local user may be able to discover a user’s deleted messages.

5.5CVSS5.2AI score0.00148EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.75 views

CVE-2021-1779

A logic error in kext loading was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave. An application may be able to execute arbitrary code with system privileges.

9.3CVSS8.1AI score0.00302EPSS
CVE
CVE
added 2021/04/02 7:15 p.m.75 views

CVE-2021-1803

The issue was addressed with improved permissions logic. This issue is fixed in macOS Big Sur 11.0.1. A local application may be able to enumerate the user's iCloud documents.

4.3CVSS4.5AI score0.00188EPSS
CVE
CVE
added 2021/09/08 3:15 p.m.75 views

CVE-2021-30669

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. A malicious application may bypass Gatekeeper checks.

5.5CVSS6AI score0.00068EPSS
CVE
CVE
added 2021/09/08 2:15 p.m.75 views

CVE-2021-30743

An out-of-bounds write was addressed with improved input validation. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4, Security Update 2021-003 Catalina, tvOS 14.5, macOS Big Sur 11.3. Processing a maliciously crafted image may lead to arbitrary code execution.

7.8CVSS8.1AI score0.00424EPSS
CVE
CVE
added 2021/09/08 2:15 p.m.75 views

CVE-2021-30776

A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7, Security Update 2021-004 Catalina. Playing a malicious audio file may lead to an unexpected application termination.

5.5CVSS5.7AI score0.00194EPSS
CVE
CVE
added 2021/09/08 2:15 p.m.75 views

CVE-2021-30780

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7, Security Update 2021-005 Mojave, Security Update 2021-004 Catalina. A malicious application may be able to gain root privileges.

9.3CVSS7.4AI score0.00376EPSS
CVE
CVE
added 2021/09/08 2:15 p.m.75 views

CVE-2021-30786

A race condition was addressed with improved state handling. This issue is fixed in iOS 14.7, macOS Big Sur 11.5. Opening a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution.

7CVSS7.6AI score0.00245EPSS
CVE
CVE
added 2021/10/19 2:15 p.m.75 views

CVE-2021-30844

A logic issue was addressed with improved state management. This issue is fixed in Security Update 2021-005 Catalina, macOS Big Sur 11.6. A remote attacker may be able to leak memory.

7.5CVSS6.6AI score0.00764EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.75 views

CVE-2021-30957

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2, tvOS 15.2. Processing a maliciously crafted audio file may lead to arbitrary code execution.

7.8CVSS7.9AI score0.0085EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.75 views

CVE-2021-30977

A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.1, Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. A malicious application may be able to execute arbitrary code with kernel privileges.

9.3CVSS7.8AI score0.0075EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.75 views

CVE-2021-30995

A race condition was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. A malicious application may be able to elevate privileges.

7CVSS6.3AI score0.00179EPSS
CVE
CVE
added 2022/03/18 6:15 p.m.75 views

CVE-2022-22579

An information disclosure issue was addressed with improved state management. This issue is fixed in iOS 15.3 and iPadOS 15.3, tvOS 15.3, Security Update 2022-001 Catalina, macOS Monterey 12.2, macOS Big Sur 11.6.3. Processing a maliciously crafted STL file may lead to unexpected application termin...

9.3CVSS7.8AI score0.003EPSS
CVE
CVE
added 2022/05/26 7:15 p.m.75 views

CVE-2022-26694

This issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.4. A plug-in may be able to inherit the application's permissions and access user data.

9.1CVSS7.8AI score0.00236EPSS
CVE
CVE
added 2022/05/26 7:15 p.m.75 views

CVE-2022-26720

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in Security Update 2022-004 Catalina, macOS Monterey 12.4, macOS Big Sur 11.6.6. A malicious application may be able to execute arbitrary code with kernel privileges.

9.3CVSS8.1AI score0.00271EPSS
CVE
CVE
added 2022/05/26 7:15 p.m.75 views

CVE-2022-26723

A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.4, macOS Big Sur 11.6.6. Mounting a maliciously crafted Samba network share may lead to arbitrary code execution.

9.8CVSS9AI score0.01215EPSS
CVE
CVE
added 2022/09/23 7:15 p.m.75 views

CVE-2022-32843

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. Processing a maliciously crafted Postscript file may result in unexpected app termination or disclosure of process memory.

7.1CVSS7AI score0.00049EPSS
CVE
CVE
added 2023/04/10 7:15 p.m.75 views

CVE-2022-46703

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 15.7.2 and iPadOS 15.7.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2. An app may be able to read sensitive location information

5.5CVSS4.1AI score0.00038EPSS
CVE
CVE
added 2023/05/08 8:15 p.m.75 views

CVE-2023-23536

The issue was addressed with improved bounds checks. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, macOS Big Sur 11.7.5, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4, tvOS 16.4, watchOS 9.4. An app may be able to execute arbitrary code with kernel privileges.

7.8CVSS7.8AI score0.00191EPSS
CVE
CVE
added 2023/05/08 8:15 p.m.75 views

CVE-2023-27952

A race condition was addressed with improved locking. This issue is fixed in macOS Ventura 13.3. An app may bypass Gatekeeper checks.

4.7CVSS3.9AI score0.00006EPSS
CVE
CVE
added 2023/05/08 8:15 p.m.75 views

CVE-2023-28190

A privacy issue was addressed by moving sensitive data to a more secure location. This issue is fixed in macOS Ventura 13.3. An app may be able to access user-sensitive data.

5.5CVSS4.7AI score0.00067EPSS
CVE
CVE
added 2023/06/23 6:15 p.m.75 views

CVE-2023-32420

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. An app may be able to cause unexpected system termination or read kernel memory.

7.1CVSS6AI score0.0003EPSS
CVE
CVE
added 2023/09/27 3:19 p.m.75 views

CVE-2023-41232

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.7, iOS 17 and iPadOS 17, macOS Ventura 13.6, iOS 16.7 and iPadOS 16.7. An app may be able to disclose kernel memory.

5.5CVSS4.8AI score0.00043EPSS
CVE
CVE
added 2024/01/23 1:15 a.m.75 views

CVE-2024-23204

The issue was addressed with additional permissions checks. This issue is fixed in macOS Sonoma 14.3, watchOS 10.3, iOS 17.3 and iPadOS 17.3. A shortcut may be able to use sensitive data with certain actions without prompting the user.

7.5CVSS6.4AI score0.00162EPSS
CVE
CVE
added 2024/03/08 2:15 a.m.75 views

CVE-2024-23255

An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4. Photos in the Hidden Photos Album may be viewed without authentication.

9.1CVSS6.4AI score0.00142EPSS
CVE
CVE
added 2024/03/08 2:15 a.m.75 views

CVE-2024-23274

An injection issue was addressed with improved input validation. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An app may be able to elevate privileges.

8.4CVSS6.7AI score0.00052EPSS
CVE
CVE
added 2024/03/08 2:15 a.m.75 views

CVE-2024-23289

A lock screen issue was addressed with improved state management. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, watchOS 10.4. A person with physical access to a device may be able to use Siri to access private calendar information.

5.5CVSS5.6AI score0.00042EPSS
CVE
CVE
added 2025/01/27 10:15 p.m.75 views

CVE-2024-54520

A path handling issue was addressed with improved validation. This issue is fixed in macOS Sonoma 14.7.2, macOS Sequoia 15.2, macOS Ventura 13.7.2. An app may be able to overwrite arbitrary files.

5.5CVSS6.2AI score0.00032EPSS
CVE
CVE
added 2025/05/12 10:15 p.m.75 views

CVE-2025-31251

The issue was addressed with improved input sanitization. This issue is fixed in watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. Processing a maliciously crafted media file may lead to unexpected app term...

5.5CVSS5.8AI score0.00015EPSS
CVE
CVE
added 2019/04/03 6:29 p.m.74 views

CVE-2018-4259

Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6.

10CVSS7AI score0.00632EPSS
CVE
CVE
added 2021/12/23 8:15 p.m.74 views

CVE-2018-4302

A null pointer dereference was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13, iCloud for Windows 7.0, watchOS 4, iOS 11, iTunes 12.7 for Windows. Processing maliciously crafted XML may lead to an unexpected application termination or arbitrary code execution.

7.8CVSS8.2AI score0.00424EPSS
CVE
CVE
added 2019/03/05 4:29 p.m.74 views

CVE-2019-6231

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3. A malicious application may be able to read restricted memory.

5.5CVSS5AI score0.00359EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.74 views

CVE-2019-8502

An API issue existed in the handling of dictation requests. This issue was addressed with improved validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to initiate a Dictation request without user authorization.

4.3CVSS4.3AI score0.00319EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.74 views

CVE-2019-8598

An input validation issue was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. A malicious application may be able to read restricted memory.

5.5CVSS5.6AI score0.0023EPSS
CVE
CVE
added 2020/10/27 8:15 p.m.74 views

CVE-2019-8633

A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, iOS 12.3, tvOS 12.3, watchOS 5.3. An application may be able to read restricted memory.

7.5CVSS6.2AI score0.00378EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.74 views

CVE-2019-8748

A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15. An application may be able to execute arbitrary code with kernel privileges.

7.8CVSS8.2AI score0.00131EPSS
CVE
CVE
added 2020/10/27 8:15 p.m.74 views

CVE-2019-8838

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3 and iPadOS 13.3, watchOS 6.1.1, macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra, tvOS 13.3. An application may be able to execute arbitrary code w...

9.3CVSS7.5AI score0.00484EPSS
CVE
CVE
added 2020/12/08 9:15 p.m.74 views

CVE-2020-27916

An out-of-bounds write was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. Processing a maliciously crafted audio file may lead to arbitrary code execution.

9.3CVSS7.5AI score0.00622EPSS
Total number of security vulnerabilities2768