Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.10.4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-7036
The fts3_tokenizer function in SQLite, as used in Apple iOS prior to 8.4 and OS X prior to 10.10.4, allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a SQL command that triggers an API call with a crafted pointer value in...
Apple Mac Os X
Apple Iphone Os
1 Article
NA
CVE-2015-3707
The FireWire driver in IOFireWireFamily in Apple OS X prior to 10.10.4 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app.
Apple Mac Os X
NA
CVE-2015-3708
kextd in kext tools in Apple OS X prior to 10.10.4 allows malicious users to write to arbitrary files via a crafted app that conducts a symlink attack.
Apple Mac Os X
NA
CVE-2015-3709
Race condition in kext tools in Apple OS X prior to 10.10.4 allows local users to bypass intended signature requirements for kernel extensions by leveraging improper pathname validation.
Apple Mac Os X
NA
CVE-2015-3711
The NTFS implementation in Apple OS X prior to 10.10.4 allows malicious users to obtain sensitive memory-layout information for the kernel via a crafted app.
Apple Mac Os X
NA
CVE-2015-3712
The NVIDIA graphics driver in Apple OS X prior to 10.10.4 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (out-of-bounds write) via a crafted app.
Apple Mac Os X
NA
CVE-2015-3713
QuickTime in Apple OS X prior to 10.10.4 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via a crafted movie file.
Apple Mac Os X
Apple Quicktime
NA
CVE-2015-3714
Apple OS X prior to 10.10.4 does not properly consider custom resource rules during app signature verification, which allows malicious users to bypass intended launch restrictions via a modified app.
Apple Mac Os X
NA
CVE-2015-3715
The code-signing implementation in Apple OS X prior to 10.10.4 does not properly consider libraries that are external to an application bundle, which allows malicious users to bypass intended launch restrictions via a crafted library.
Apple Mac Os X
NA
CVE-2015-3716
Spotlight in Apple OS X prior to 10.10.4 allows malicious users to execute arbitrary commands via a crafted name of a photo file within the local photo library.
Apple Mac Os X
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »