Apple

macOS X

3207 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2014-1356

  • EPSS 3.25%
  • Published 01.07.2014 10:17:26
  • Last modified 12.04.2025 10:46:40

Heap-based buffer overflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to execute arbitrary code via a crafted application that sends IPC messages.

10

CVE-2014-1357

  • EPSS 3.25%
  • Published 01.07.2014 10:17:26
  • Last modified 12.04.2025 10:46:40

Heap-based buffer overflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to execute arbitrary code via a crafted application that generates log messages.

10

CVE-2014-1358

  • EPSS 3.19%
  • Published 01.07.2014 10:17:26
  • Last modified 12.04.2025 10:46:40

Integer overflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to execute arbitrary code via a crafted application.

10

CVE-2014-1359

  • EPSS 1.54%
  • Published 01.07.2014 10:17:26
  • Last modified 12.04.2025 10:46:40

Integer underflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to execute arbitrary code via a crafted application.

5

CVE-2014-1361

  • EPSS 0.78%
  • Published 01.07.2014 10:17:26
  • Last modified 12.04.2025 10:46:40

Secure Transport in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 does not ensure that a DTLS message is accepted only for a DTLS connection, which allows remote attackers to obtain potentially sensitive information from...

2.1

CVE-2014-1317

  • EPSS 0.07%
  • Published 01.07.2014 10:17:25
  • Last modified 12.04.2025 10:46:40

iBooks Commerce in Apple OS X before 10.9.4 places Apple ID credentials in the iBooks log, which allows local users to obtain sensitive information by reading this file.

4.3

CVE-2013-7040

  • EPSS 0.56%
  • Published 19.05.2014 14:55:09
  • Last modified 12.04.2025 10:46:40

Python 2.7 before 3.4 only uses the last eight bits of the prefix to randomize hash values, which causes it to compute hash values without restricting the ability to trigger hash collisions predictably and makes it easier for context-dependent attack...

6.8

CVE-2014-1295

Exploit
  • EPSS 0.14%
  • Published 23.04.2014 11:52:59
  • Last modified 12.04.2025 10:46:40

Secure Transport in Apple iOS before 7.1.1, Apple OS X 10.8.x and 10.9.x through 10.9.2, and Apple TV before 6.1.1 does not ensure that a server's X.509 certificate is the same during renegotiation as it was before renegotiation, which allows man-in-...

4.3

CVE-2014-1296

  • EPSS 0.21%
  • Published 23.04.2014 11:52:59
  • Last modified 12.04.2025 10:46:40

CFNetwork in Apple iOS before 7.1.1, Apple OS X through 10.9.2, and Apple TV before 6.1.1 does not ensure that a Set-Cookie HTTP header is complete before interpreting the header's value, which allows remote attackers to bypass intended access restri...

10

CVE-2014-1314

  • EPSS 0.29%
  • Published 23.04.2014 11:52:59
  • Last modified 12.04.2025 10:46:40

WindowServer in Apple OS X through 10.9.2 does not prevent session creation by a sandboxed application, which allows attackers to bypass the sandbox protection mechanism and execute arbitrary code via a crafted application.