Apple

macOS X

3207 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2016-4596

  • EPSS 0.98%
  • Published 22.07.2016 02:59:19
  • Last modified 12.04.2025 10:46:40

QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FlashPix bitmap image, a different vulnerability than CVE-2016-4597, CVE-2016-4600, and CVE-2016-4...

4.6

CVE-2016-4595

  • EPSS 0.07%
  • Published 22.07.2016 02:59:18
  • Last modified 12.04.2025 10:46:40

Safari Login AutoFill in Apple OS X before 10.11.6 allows physically proximate attackers to discover passwords by reading the screen during the login procedure.

7.8

CVE-2016-4594

  • EPSS 0.21%
  • Published 22.07.2016 02:59:17
  • Last modified 12.04.2025 10:46:40

The Sandbox Profiles component in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows attackers to access the process list via a crafted app that makes an API call.

7.8

CVE-2016-4582

  • EPSS 0.12%
  • Published 22.07.2016 02:59:04
  • Last modified 12.04.2025 10:46:40

The kernel in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-...

5.5

CVE-2016-1865

  • EPSS 0.06%
  • Published 22.07.2016 02:59:02
  • Last modified 12.04.2025 10:46:40

The kernel in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows local users to cause a denial of service (NULL pointer dereference) via unspecified vectors.

7.8

CVE-2016-1863

Exploit
  • EPSS 0.18%
  • Published 22.07.2016 02:59:01
  • Last modified 12.04.2025 10:46:40

The kernel in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-...

7.8

CVE-2014-9862

  • EPSS 8.09%
  • Published 22.07.2016 02:59:00
  • Last modified 12.04.2025 10:46:40

Integer signedness error in bspatch.c in bspatch in bsdiff, as used in Apple OS X before 10.11.6 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow) via a crafted patch file.

9.8

CVE-2015-7988

  • EPSS 1.93%
  • Published 26.06.2016 01:59:01
  • Last modified 12.04.2025 10:46:40

The handle_regservice_request function in mDNSResponder before 625.41.2 allows remote attackers to execute arbitrary code or cause a denial of service (NULL pointer dereference) via unspecified vectors.

9.8

CVE-2015-7987

  • EPSS 3.09%
  • Published 26.06.2016 01:59:00
  • Last modified 12.04.2025 10:46:40

Multiple buffer overflows in mDNSResponder before 625.41.2 allow remote attackers to read or write to out-of-bounds memory locations via vectors involving the (1) GetValueForIPv4Addr, (2) GetValueForMACAddr, (3) rfc3110_import, or (4) CopyNSEC3Resour...

4.3

CVE-2016-1862

  • EPSS 0.17%
  • Published 19.06.2016 20:59:09
  • Last modified 12.04.2025 10:46:40

Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app, a different vulnerability than CVE-2016-1860.