Apple

macOS X

3207 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2020-9945

  • EPSS 0.34%
  • Published 08.12.2020 20:15:16
  • Last modified 21.11.2024 05:41:34

A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.0.1, Safari 14.0.1. Visiting a malicious website may lead to address bar spoofing.

9.3

CVE-2020-9949

  • EPSS 0.7%
  • Published 08.12.2020 20:15:16
  • Last modified 21.11.2024 05:41:34

A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, watchOS 7.0, iOS 14.0 and iPadOS 14.0, macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra, t...

7.8

CVE-2020-9954

  • EPSS 0.86%
  • Published 08.12.2020 20:15:16
  • Last modified 21.11.2024 05:41:35

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in watchOS 7.0, tvOS 14.0, macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave, iOS 14.0 and iPadOS 14.0. Playing a mal...

6.3

CVE-2020-10014

  • EPSS 0.79%
  • Published 08.12.2020 20:15:14
  • Last modified 21.11.2024 04:54:39

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Big Sur 11.0.1. A malicious application may be able to break out of its sandbox.

9.3

CVE-2020-10016

  • EPSS 0.56%
  • Published 08.12.2020 20:15:14
  • Last modified 21.11.2024 04:54:39

A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. An application may be able to execute arbitrary code with kernel privileges.

7.8

CVE-2020-10003

  • EPSS 0.18%
  • Published 08.12.2020 20:15:13
  • Last modified 21.11.2024 04:54:37

An issue existed within the path validation logic for symlinks. This issue was addressed with improved path sanitization. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, tvOS 14.2, watchOS 7.1. A local attacker may be able to e...

7.8

CVE-2020-10004

  • EPSS 0.56%
  • Published 08.12.2020 20:15:13
  • Last modified 21.11.2024 04:54:38

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2. Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution.

5.5

CVE-2020-10006

  • EPSS 0.3%
  • Published 08.12.2020 20:15:13
  • Last modified 21.11.2024 04:54:38

This issue was addressed with improved entitlements. This issue is fixed in macOS Big Sur 11.0.1. A malicious application may be able to access restricted files.

5.5

CVE-2020-10007

  • EPSS 0.16%
  • Published 08.12.2020 20:15:13
  • Last modified 21.11.2024 04:54:38

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1. A malicious application may be able to determine kernel memory layout.

5.5

CVE-2020-10009

  • EPSS 0.3%
  • Published 08.12.2020 20:15:13
  • Last modified 21.11.2024 04:54:38

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1. A sandboxed process may be able to circumvent sandbox restrictions.