Apple

macOS X

3207 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2015-7045

  • EPSS 0.34%
  • Veröffentlicht 11.12.2015 11:59:10
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Keychain Access in Apple OS X before 10.11.2 and tvOS before 9.1 improperly interacts with Keychain Agent, which allows attackers to spoof the Keychain Server via unspecified vectors.

7.6

CVE-2015-7044

  • EPSS 0.87%
  • Veröffentlicht 11.12.2015 11:59:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The System Integrity Protection feature in Apple OS X before 10.11.2 mishandles union mounts, which allows attackers to execute arbitrary code in a privileged context via a crafted app with root privileges.

4.3

CVE-2015-7043

  • EPSS 1.08%
  • Veröffentlicht 11.12.2015 11:59:08
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to cause a denial of service via a crafted app, a different vulnerability than CVE-2015-7040, CVE-2015-7041, and CVE-2015-7042.

4.3

CVE-2015-7042

  • EPSS 1.08%
  • Veröffentlicht 11.12.2015 11:59:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to cause a denial of service via a crafted app, a different vulnerability than CVE-2015-7040, CVE-2015-7041, and CVE-2015-7043.

4.3

CVE-2015-7041

  • EPSS 1.08%
  • Veröffentlicht 11.12.2015 11:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to cause a denial of service via a crafted app, a different vulnerability than CVE-2015-7040, CVE-2015-7042, and CVE-2015-7043.

4.3

CVE-2015-7040

  • EPSS 1.08%
  • Veröffentlicht 11.12.2015 11:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to cause a denial of service via a crafted app, a different vulnerability than CVE-2015-7041, CVE-2015-7042, and CVE-2015-7043.

6.8

CVE-2015-7039

  • EPSS 27.36%
  • Veröffentlicht 11.12.2015 11:59:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Buffer overflow in libc in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code via a crafted package, a different vulnerability than CVE-2015-7038.

6.8

CVE-2015-7038

  • EPSS 6.46%
  • Veröffentlicht 11.12.2015 11:59:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Buffer overflow in libc in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code via a crafted package, a different vulnerability than CVE-2015-7039.

6.8

CVE-2015-7001

  • EPSS 0.91%
  • Veröffentlicht 11.12.2015 11:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

AppSandbox in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 mishandles hard links, which allows attackers to bypass Contacts access revocation via a crafted app.

5.3

CVE-2015-3195

  • EPSS 3.85%
  • Veröffentlicht 06.12.2015 20:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh, 1.0.0 before 1.0.0t, 1.0.1 before 1.0.1q, and 1.0.2 before 1.0.2e mishandles errors caused by malformed X509_ATTRIBUTE data, which allows remote attackers to ob...