Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.10.1 vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2014-8835
The xpc_data_get_bytes function in libxpc in Apple OS X prior to 10.10.2 does not verify that a dictionary's Attributes key has the xpc_data data type, which allows malicious users to execute arbitrary code by providing a crafted dictionary to sysmond, related to an "XP...
Apple Mac Os X 10.10.0
Apple Mac Os X 10.10.1
1 EDB exploit
2.1
CVSSv2
CVE-2014-8834
UserAccountUpdater in Apple OS X 10.10 prior to 10.10.2 stores a PDF document's password in a printing preference file, which allows local users to obtain sensitive information by reading a file.
Apple Mac Os X 10.10.1
Apple Mac Os X 10.10.0
5
CVSSv2
CVE-2014-4453
Apple iOS prior to 8.1.1 and OS X prior to 10.10.1 include location data during establishment of a Spotlight Suggestions server connection by Spotlight or Safari, which might allow remote malicious users to obtain sensitive information via unspecified vectors.
Apple Iphone Os
Apple Iphone Os 8.0.2
Apple Iphone Os 8.0.1
Apple Iphone Os 8.0
Apple Mac Os X
Apple Mac Os X 10.8.5
Apple Mac Os X 10.8.4
Apple Mac Os X 10.7.3
Apple Mac Os X 10.7.2
Apple Mac Os X 10.6.4
Apple Mac Os X 10.6.3
Apple Mac Os X 10.5.4
Apple Mac Os X 10.5.3
Apple Mac Os X 10.4.7
Apple Mac Os X 10.4.6
Apple Mac Os X 10.4.1
Apple Mac Os X 10.4.0
Apple Mac Os X 10.3.3
Apple Mac Os X 10.3.2
Apple Mac Os X 10.2.5
Apple Mac Os X 10.2.4
Apple Mac Os X 10.1.4
5
CVSSv2
CVE-2014-4458
The "System Profiler About This Mac" component in Apple OS X prior to 10.10.1 includes extraneous cookie data in system-model requests, which might allow remote malicious users to obtain sensitive information via unspecified vectors.
Apple Mac Os X
Apple Mac Os X 10.8.5
Apple Mac Os X 10.8.4
Apple Mac Os X 10.7.3
Apple Mac Os X 10.7.2
Apple Mac Os X 10.6.4
Apple Mac Os X 10.6.3
Apple Mac Os X 10.5.4
Apple Mac Os X 10.5.3
Apple Mac Os X 10.4.7
Apple Mac Os X 10.4.6
Apple Mac Os X 10.4.1
Apple Mac Os X 10.4.0
Apple Mac Os X 10.3.3
Apple Mac Os X 10.3.2
Apple Mac Os X 10.2.5
Apple Mac Os X 10.2.4
Apple Mac Os X 10.1.4
Apple Mac Os X 10.1.3
Apple Mac Os X 10.9.3
Apple Mac Os X 10.9.2
Apple Mac Os X 10.8.1
2.1
CVSSv2
CVE-2014-4460
CFNetwork in Apple iOS prior to 8.1.1 and OS X prior to 10.10.1 does not properly clear the browsing cache upon a transition out of private-browsing mode, which makes it easier for physically proximate malicious users to obtain sensitive information by reading cache files.
Apple Iphone Os 8.0
Apple Iphone Os
Apple Iphone Os 8.0.2
Apple Iphone Os 8.0.1
Apple Mac Os X 10.9
Apple Mac Os X 10.8.5
Apple Mac Os X 10.7.5
Apple Mac Os X 10.7.4
Apple Mac Os X 10.6.6
Apple Mac Os X 10.6.5
Apple Mac Os X 10.6.4
Apple Mac Os X 10.5.6
Apple Mac Os X 10.5.5
Apple Mac Os X 10.4.9
Apple Mac Os X 10.4.8
Apple Mac Os X 10.4.11
Apple Mac Os X 10.4.10
Apple Mac Os X 10.4.1
Apple Mac Os X 10.3.5
Apple Mac Os X 10.3.4
Apple Mac Os X 10.2.7
Apple Mac Os X 10.2.6
6.8
CVSSv2
CVE-2014-8129
LibTIFF 4.0.3 allows remote malicious users to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via a crafted TIFF image, as demonstrated by failure of tif_next.c to verify that the BitsPerSample value is 2, and the t2p_sample_lab_signed_t...
Libtiff Libtiff 4.0.3
Debian Debian Linux 7.0
Redhat Enterprise Linux Server Aus 7.2
Redhat Enterprise Linux Server Tus 7.2
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server Eus 7.2
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Server Tus 7.3
Redhat Enterprise Linux Server Aus 7.3
Redhat Enterprise Linux Server Aus 7.4
Redhat Enterprise Linux Server Eus 7.3
Redhat Enterprise Linux Server Eus 7.4
Apple Mac Os X 10.10.0
Apple Mac Os X 10.10.1
Apple Mac Os X 10.9.5
Apple Mac Os X 10.10.3
Apple Mac Os X 10.10.2
Apple Mac Os X 10.8.5
Apple Iphone Os -
6.8
CVSSv2
CVE-2014-4459
Use-after-free vulnerability in WebKit, as used in Apple OS X prior to 10.10.1, allows remote malicious users to execute arbitrary code via crafted page objects in an HTML document.
Apple Safari
Apple Mac Os X
Apple Iphone Os
Apple Itunes
Apple Tvos
4.3
CVSSv2
CVE-2014-8130
The _TIFFmalloc function in tif_unix.c in LibTIFF 4.0.3 does not reject a zero size, which allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image that is mishandled by the TIFFWriteScanline function in tif_...
Libtiff Libtiff 4.0.3
Redhat Enterprise Linux Server Eus 7.2
Redhat Enterprise Linux Server Eus 7.3
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Server Aus 7.2
Redhat Enterprise Linux Server Aus 7.4
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server Tus 7.3
Redhat Enterprise Linux Server Tus 7.2
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Server Aus 7.3
Redhat Enterprise Linux Server Eus 7.4
Redhat Enterprise Linux Workstation 6.0
Apple Mac Os X 10.8.5
Apple Mac Os X 10.9.5
Apple Mac Os X 10.10.0
Apple Mac Os X 10.10.1
Apple Mac Os X 10.10.2
Apple Mac Os X 10.10.3
Apple Iphone Os
7.5
CVSSv2
CVE-2014-8517
The fetch_url function in usr.bin/ftp/fetch.c in tnftp, as used in NetBSD 5.1 up to and including 5.1.4, 5.2 up to and including 5.2.2, 6.0 up to and including 6.0.6, and 6.1 up to and including 6.1.5 allows remote malicious users to execute arbitrary commands via a | (pipe) char...
Apple Mac Os X 10.10.1
Apple Mac Os X 10.10.0
Apple Mac Os X 10.9.5
Apple Mac Os X 10.8.5
Netbsd Netbsd 5.1.3
Netbsd Netbsd 5.1.4
Netbsd Netbsd 5.2
Netbsd Netbsd 6.0.4
Netbsd Netbsd 6.0.5
Netbsd Netbsd 6.1.5
Netbsd Netbsd 5.1
Netbsd Netbsd 6.0
Netbsd Netbsd 6.0.1
Netbsd Netbsd 6.1.1
Netbsd Netbsd 6.1.2
Netbsd Netbsd 5.2.1
Netbsd Netbsd 5.2.2
Netbsd Netbsd 6.0.6
Netbsd Netbsd 6.1
Netbsd Netbsd 5.1.1
Netbsd Netbsd 5.1.2
Netbsd Netbsd 6.0.2
2 EDB exploits
1 Github repository
1 Article
7.5
CVSSv2
CVE-2015-3145
The sanitize_cookie_path function in cURL and libcurl 7.31.0 up to and including 7.41.0 does not properly calculate an index, which allows remote malicious users to cause a denial of service (out-of-bounds write and crash) or possibly have other unspecified impact via a cookie pa...
Fedoraproject Fedora 21
Fedoraproject Fedora 22
Canonical Ubuntu Linux 12.04
Debian Debian Linux 7.0
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 14.10
Canonical Ubuntu Linux 14.04
Haxx Curl 7.37.1
Haxx Curl 7.38.0
Haxx Curl 7.33.0
Haxx Curl 7.34.0
Haxx Curl 7.35.0
Haxx Curl 7.41.0
Haxx Curl 7.36.0
Haxx Curl 7.37.0
Haxx Curl 7.31.0
Haxx Curl 7.32.0
Haxx Curl 7.39.0
Haxx Curl 7.40.0
Apple Mac Os X 10.10.2
Apple Mac Os X 10.10.3
Apple Mac Os X 10.10.0
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started