Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mac os x vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2024-3094
Malicious code exists in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt object file from a disguised test file existing in the source code, which is then used to modify specific fun...
Tukaani Xz 5.6.1
Tukaani Xz 5.6.0
71 Github repositories
4 Articles
10
CVSSv3
CVE-2018-4310
An access issue was addressed with additional sandbox restrictions. This issue affected versions prior to iOS 12, macOS Mojave 10.14.
Apple Iphone Os
Apple Mac Os X
10
CVSSv3
CVE-2019-6235
A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3, iTunes 12.9.3 for Windows. A sandboxed process may be able to circumvent sandbox restrictions.
Apple Itunes
Apple Iphone Os
Apple Mac Os X
Apple Tv Os
Apple Watch Os
10
CVSSv3
CVE-2018-4229
An issue exists in certain Apple products. macOS prior to 10.13.5 is affected. The issue involves the "Grand Central Dispatch" component. It allows malicious users to bypass a sandbox protection mechanism by leveraging the misparsing of entitlement plists.
Apple Mac Os X
10
CVSSv3
CVE-2018-4091
An issue exists in certain Apple products. macOS prior to 10.13.3 is affected. The issue involves the "Sandbox" component. It allows bypass of a sandbox protection mechanism.
Apple Mac Os X
1 Article
10
CVSSv3
CVE-2015-8659
The idle stream handling in nghttp2 prior to 1.6.0 allows malicious users to have unspecified impact via unknown vectors, aka a heap-use-after-free bug.
Apple Mac Os X
Apple Iphone Os
Apple Tvos
Apple Watchos
Nghttp2 Nghttp2
9.8
CVSSv3
CVE-2022-22630
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.6.6, macOS Monterey 12.3, Security Update 2022-004 Catalina. A remote user may cause an unexpected app termination or arbitrary code execution
Apple Mac Os X 10.15.7
Apple Macos
9.8
CVSSv3
CVE-2022-32839
The issue was addressed with improved bounds checks. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina, iOS 15.6 and iPadOS 15.6, tvOS 15.6, watchOS 8.7. A remote user may cause an unexpected app termination or arbitrary code exec...
Apple Macos
Apple Mac Os X 10.15.7
Apple Ipados
Apple Iphone Os
Apple Macos 10.15.7
Apple Tvos
Apple Watchos
9.8
CVSSv3
CVE-2022-26775
An integer overflow was addressed with improved input validation. This issue is fixed in Security Update 2022-004 Catalina, macOS Monterey 12.4. An attacker may be able to cause unexpected application termination or arbitrary code execution.
Apple Mac Os X
Apple Mac Os X 10.15.7
Apple Macos
9.8
CVSSv3
CVE-2022-22720
Apache HTTP Server 2.4.52 and previous versions fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling
Apache Http Server
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Debian Debian Linux 9.0
Oracle Http Server 12.2.1.3.0
Oracle Http Server 12.2.1.4.0
Oracle Enterprise Manager Ops Center 12.4.0.0
Oracle Zfs Storage Appliance Kit 8.8
Apple Macos
Apple Mac Os X 10.15.7
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
injection
CVE-2024-30983
CVE-2023-4235
CVE-2024-21338
privilege
encryption
CVE-2023-4232
CVE-2024-31497
CVE-2024-32341
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »