Apple

macOS X

3207 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2013-5192

  • EPSS 0.14%
  • Veröffentlicht 24.10.2013 03:48:52
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The USB hub controller in Apple Mac OS X before 10.9 allows local users to cause a denial of service (system crash) via a request with a crafted (1) port or (2) port number.

5

CVE-2013-5167

  • EPSS 0.35%
  • Veröffentlicht 24.10.2013 03:48:49
  • Zuletzt bearbeitet 11.04.2025 00:51:21

CFNetwork in Apple Mac OS X before 10.9 does not properly support Safari's deletion of session cookies in response to a reset operation, which makes it easier for remote web servers to track users via Set-Cookie HTTP headers.

6.8

CVE-2013-5168

  • EPSS 0.58%
  • Veröffentlicht 24.10.2013 03:48:49
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Console in Apple Mac OS X before 10.9 allows user-assisted remote attackers to execute arbitrary applications by triggering a log entry with a crafted attached URL.

1.9

CVE-2013-5169

  • EPSS 0.13%
  • Veröffentlicht 24.10.2013 03:48:49
  • Zuletzt bearbeitet 11.04.2025 00:51:21

CoreGraphics in Apple Mac OS X before 10.9, when display-sleep mode is used, does not ensure that screen locking blocks the visibility of all windows, which allows physically proximate attackers to obtain sensitive information by reading the screen.

6.8

CVE-2013-5170

  • EPSS 1.77%
  • Veröffentlicht 24.10.2013 03:48:49
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Buffer underflow in CoreGraphics in Apple Mac OS X before 10.9 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document.

3.3

CVE-2013-5171

  • EPSS 0.05%
  • Veröffentlicht 24.10.2013 03:48:49
  • Zuletzt bearbeitet 11.04.2025 00:51:21

CoreGraphics in Apple Mac OS X before 10.9 allows local users to bypass secure input mode and log an arbitrary application's keystrokes via a hotkey event registration.

7.1

CVE-2013-5172

  • EPSS 0.53%
  • Veröffentlicht 24.10.2013 03:48:49
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The kernel in Apple Mac OS X before 10.9 does not properly determine the output length for SHA-2 digest function calls, which allows context-dependent attackers to cause a denial of service (panic) by triggering a digest operation, as demonstrated by...

2.1

CVE-2013-5173

  • EPSS 0.13%
  • Veröffentlicht 24.10.2013 03:48:49
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The random-number generator in the kernel in Apple Mac OS X before 10.9 provides lengthy exclusive access for processing of large requests, which allows local users to cause a denial of service (temporary generator outage) via an application that req...

4.9

CVE-2013-5174

  • EPSS 0.14%
  • Veröffentlicht 24.10.2013 03:48:49
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Integer signedness error in the kernel in Apple Mac OS X before 10.9 allows local users to cause a denial of service (system crash) via a crafted tty read operation.

6.6

CVE-2013-5175

  • EPSS 0.14%
  • Veröffentlicht 24.10.2013 03:48:49
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The kernel in Apple Mac OS X before 10.9 allows local users to obtain sensitive information or cause a denial of service (out-of-bounds read and system crash) via a crafted Mach-O file.