Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
AppleMacos

515 matches found

CVE
CVEadded 2024/07/29 11:15 p.m.81 views

CVE-2024-40815

A race condition was addressed with additional validation. This issue is fixed in macOS Ventura 13.6.8, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, macOS Sonoma 14.6. A malicious attacker with arbitrary read and write capability may be able to bypass Pointer Authentication.

7.5CVSS6AI score0.02558EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.80 views

CVE-2024-23242

A privacy issue was addressed by not logging contents of text fields. This issue is fixed in macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4. An app may be able to view Mail data.

3.3CVSS6.4AI score0.00054EPSS
CVE
CVEadded 2024/05/14 3:13 p.m.80 views

CVE-2024-27796

The issue was addressed with improved checks. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5. An attacker may be able to elevate privileges.

8.1CVSS5.3AI score0.00023EPSS
CVE
CVEadded 2024/05/14 3:13 p.m.80 views

CVE-2024-27847

This issue was addressed with improved checks This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5. An app may be able to bypass Privacy preferences.

7.4CVSS5.3AI score0.00009EPSS
CVE
CVEadded 2024/01/23 1:15 a.m.79 views

CVE-2024-23212

The issue was addressed with improved memory handling. This issue is fixed in watchOS 10.3, tvOS 17.3, iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, macOS Ventura 13.6.4, macOS Monterey 12.7.3. An app may be able to execute arbitrary code with kernel privileges.

7.8CVSS7.5AI score0.00054EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.79 views

CVE-2024-23245

This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. Third-party shortcuts may use a legacy action from Automator to send events to apps without user consent.

5.4CVSS6.9AI score0.00061EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.79 views

CVE-2024-23246

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, watchOS 10.4, iOS 16.7.6 and iPadOS 16.7.6, tvOS 17.4. An app may be able to break out of its sandbox.

8.6CVSS5.5AI score0.00072EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.79 views

CVE-2024-23250

An access issue was addressed with improved access restrictions. This issue is fixed in tvOS 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, watchOS 10.4. An app may be able to access Bluetooth-connected microphones without user permission.

5.5CVSS6.2AI score0.00015EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.79 views

CVE-2024-23283

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5. An app may be able to access user-sensitive data.

6.2CVSS6.3AI score0.00024EPSS
CVE
CVEadded 2024/05/14 3:13 p.m.79 views

CVE-2024-27825

A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Sonoma 14.5. An app may be able to bypass certain Privacy preferences.

7.8CVSS5.9AI score0.00015EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.78 views

CVE-2024-0258

The issue was addressed with improved memory handling. This issue is fixed in tvOS 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, watchOS 10.4. An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges.

8.6CVSS7.3AI score0.00019EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.78 views

CVE-2024-23239

A race condition was addressed with improved state handling. This issue is fixed in tvOS 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, watchOS 10.4. An app may be able to leak sensitive user information.

5.9CVSS6.2AI score0.00064EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.78 views

CVE-2024-23255

An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4. Photos in the Hidden Photos Album may be viewed without authentication.

9.1CVSS6.4AI score0.00142EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.78 views

CVE-2024-23278

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.6.5, macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4, watchOS 10.4, iOS 16.7.6 and iPadOS 16.7.6, tvOS 17.4. An app may be able to break out of its sandbox.

8.6CVSS6.3AI score0.00072EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.78 views

CVE-2024-23287

A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4, watchOS 10.4. An app may be able to access user-sensitive data.

6.5CVSS6.1AI score0.00175EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.78 views

CVE-2024-23288

This issue was addressed by removing the vulnerable code. This issue is fixed in tvOS 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, watchOS 10.4. An app may be able to elevate privileges.

8.4CVSS6.6AI score0.00034EPSS
CVE
CVEadded 2024/06/10 8:15 p.m.77 views

CVE-2022-48578

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.5. Processing an AppleScript may result in unexpected termination or disclosure of process memory.

7.1CVSS6.1AI score0.00126EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.77 views

CVE-2024-23289

A lock screen issue was addressed with improved state management. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, watchOS 10.4. A person with physical access to a device may be able to use Siri to access private calendar information.

5.5CVSS5.6AI score0.00042EPSS
CVE
CVEadded 2024/05/14 3:13 p.m.77 views

CVE-2024-27837

A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sonoma 14.5. A local attacker may gain access to Keychain items.

7.7CVSS5.8AI score0.00059EPSS
CVE
CVEadded 2024/01/23 1:15 a.m.76 views

CVE-2024-23204

The issue was addressed with additional permissions checks. This issue is fixed in macOS Sonoma 14.3, watchOS 10.3, iOS 17.3 and iPadOS 17.3. A shortcut may be able to use sensitive data with certain actions without prompting the user.

7.5CVSS6.4AI score0.00162EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.76 views

CVE-2024-23205

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4. An app may be able to access sensitive user data.

5.5CVSS6.1AI score0.00041EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.76 views

CVE-2024-23274

An injection issue was addressed with improved input validation. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An app may be able to elevate privileges.

8.4CVSS6.7AI score0.00052EPSS
CVE
CVEadded 2024/06/10 8:15 p.m.75 views

CVE-2022-32897

A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Monterey 12.5. Processing a maliciously crafted tiff file may lead to arbitrary code execution.

8.1CVSS7.3AI score0.00322EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.75 views

CVE-2024-23231

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Ventura 13.6.5, macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4, watchOS 10.4, iOS 16.7.6 and iPadOS 16.7.6. An app may be able to access user-sensitive data.

5.5CVSS6.2AI score0.00025EPSS
CVE
CVEadded 2024/05/14 3:13 p.m.75 views

CVE-2024-27829

The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.5. Processing a file may lead to unexpected app termination or arbitrary code execution.

7.8CVSS6.9AI score0.00181EPSS
CVE
CVEadded 2024/07/29 11:15 p.m.75 views

CVE-2024-40836

A logic issue was addressed with improved checks. This issue is fixed in watchOS 10.6, macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, iOS 16.7.9 and iPadOS 16.7.9. A shortcut may be able to use sensitive data with certain actions without prompting the user.

7.5CVSS5.5AI score0.00109EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.74 views

CVE-2024-23258

An out-of-bounds read was addressed with improved input validation. This issue is fixed in visionOS 1.1, macOS Sonoma 14.4. Processing an image may lead to arbitrary code execution.

7.8CVSS7.2AI score0.00112EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.74 views

CVE-2024-23272

A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. A user may gain access to protected parts of the file system.

5.5CVSS5.3AI score0.00023EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.74 views

CVE-2024-23291

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in tvOS 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, watchOS 10.4. A malicious app may be able to observe user data in log entries related to accessibility notifications.

7.5CVSS6.3AI score0.0017EPSS
CVE
CVEadded 2024/06/10 9:15 p.m.74 views

CVE-2024-27836

The issue was addressed with improved checks. This issue is fixed in visionOS 1.2, macOS Sonoma 14.5, iOS 17.5 and iPadOS 17.5. Processing a maliciously crafted image may lead to arbitrary code execution.

7.8CVSS7AI score0.00096EPSS
CVE
CVEadded 2024/07/29 11:15 p.m.74 views

CVE-2024-40794

This issue was addressed through improved state management. This issue is fixed in macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, Safari 17.6. Private Browsing tabs may be accessed without authentication.

5.3CVSS6AI score0.00092EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.73 views

CVE-2024-23267

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An app may be able to bypass certain Privacy preferences.

5.5CVSS5.2AI score0.00011EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.73 views

CVE-2024-23268

An injection issue was addressed with improved input validation. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An app may be able to elevate privileges.

8.4CVSS6.7AI score0.00052EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.73 views

CVE-2024-23292

This issue was addressed with improved data protection. This issue is fixed in macOS Sonoma 14.4, iOS 17.4 and iPadOS 17.4. An app may be able to access information about a user's contacts.

3.3CVSS6AI score0.00083EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.73 views

CVE-2024-23294

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sonoma 14.4. Processing malicious input may lead to code execution.

7.8CVSS7.2AI score0.0024EPSS
CVE
CVEadded 2024/05/14 3:13 p.m.73 views

CVE-2024-27842

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5. An app may be able to execute arbitrary code with kernel privileges.

8.1CVSS5.4AI score0.0012EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.72 views

CVE-2024-23241

This issue was addressed through improved state management. This issue is fixed in tvOS 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4. An app may be able to leak sensitive user information.

6.5CVSS6.4AI score0.00112EPSS
CVE
CVEadded 2024/09/17 12:15 a.m.72 views

CVE-2024-27876

A race condition was addressed with improved locking. This issue is fixed in macOS Ventura 13.7, iOS 17.7 and iPadOS 17.7, visionOS 2, iOS 18 and iPadOS 18, macOS Sonoma 14.7, macOS Sequoia 15. Unpacking a maliciously crafted archive may allow an attacker to write arbitrary files.

8.1CVSS6.2AI score0.0004EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.71 views

CVE-2024-23230

This issue was addressed with improved file handling. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An app may be able to access sensitive user data.

5.5CVSS6.4AI score0.00021EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.71 views

CVE-2024-23244

A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4. An app from a standard user account may be able to escalate privilege after admin user login.

7.8CVSS6.7AI score0.0002EPSS
CVE
CVEadded 2024/05/14 3:13 p.m.71 views

CVE-2024-27813

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5. An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges.

8.6CVSS5.6AI score0.00032EPSS
CVE
CVEadded 2024/05/14 3:13 p.m.71 views

CVE-2024-27821

A path handling issue was addressed with improved validation. This issue is fixed in iOS 17.5 and iPadOS 17.5, watchOS 10.5, macOS Sonoma 14.5. A shortcut may output sensitive user data without consent.

7.5CVSS4.2AI score0.03058EPSS
CVE
CVEadded 2024/07/29 11:15 p.m.71 views

CVE-2024-40786

This issue was addressed through improved state management. This issue is fixed in iOS 17.6 and iPadOS 17.6, iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8. An attacker may be able to view sensitive user information.

7.5CVSS5.7AI score0.00076EPSS
CVE
CVEadded 2024/12/12 2:15 a.m.71 views

CVE-2024-54529

A logic issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2. An app may be able to execute arbitrary code with kernel privileges.

7.8CVSS6.8AI score0.00146EPSS
CVE
CVEadded 2024/03/28 4:15 p.m.70 views

CVE-2023-42936

This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Monterey 12.7.2, macOS Ventura 13.6.3, iOS 17.2 and iPadOS 17.2, tvOS 17.2, watchOS 10.2, macOS Sonoma 14.2. An app may be able to access user-sensitive data.

5.5CVSS7AI score0.00045EPSS
CVE
CVEadded 2024/05/14 2:58 p.m.70 views

CVE-2024-23229

This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Monterey 12.7.5, macOS Ventura 13.6.5, macOS Sonoma 14.4. A malicious application may be able to access Find My data.

5.5CVSS6.3AI score0.00019EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.70 views

CVE-2024-23253

A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14.4. An app may be able to access a user's Photos Library.

7.5CVSS6.5AI score0.00102EPSS
CVE
CVEadded 2024/03/08 2:15 a.m.70 views

CVE-2024-23266

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An app may be able to modify protected parts of the file system.

5.5CVSS5.2AI score0.00015EPSS
CVE
CVEadded 2024/03/28 4:15 p.m.69 views

CVE-2023-40390

A privacy issue was addressed by moving sensitive data to a protected location. This issue is fixed in macOS Sonoma 14.2. An app may be able to access user-sensitive data.

5.5CVSS8.2AI score0.00122EPSS
CVE
CVEadded 2024/01/23 1:15 a.m.69 views

CVE-2024-23211

A privacy issue was addressed with improved handling of user preferences. This issue is fixed in watchOS 10.3, iOS 17.3 and iPadOS 17.3, macOS Sonoma 14.3, iOS 16.7.5 and iPadOS 16.7.5, Safari 17.3. A user's private browsing activity may be visible in Settings.

3.3CVSS4.5AI score0.00025EPSS
Total number of security vulnerabilities515