Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.10.2 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-4492
libnetcore in Apple iOS prior to 8.1.3, Apple OS X prior to 10.10.2, and Apple TV prior to 7.0.3 does not verify that certain values have the expected data type, which allows malicious users to execute arbitrary code in an _networkd context via a crafted XPC message from a sandbo...
Apple Mac Os X
Apple Tvos
Apple Iphone Os
1 EDB exploit
NA
CVE-2014-4498
The CPU Software in Apple OS X prior to 10.10.2 allows physically proximate malicious users to modify firmware during the EFI update process by inserting a Thunderbolt device with crafted code in an Option ROM, aka the "Thunderstrike" issue.
Apple Mac Os X
NA
CVE-2014-8817
coresymbolicationd in CoreSymbolication in Apple OS X prior to 10.10.2 does not verify that expected data types are present in XPC messages, which allows malicious users to execute arbitrary code in a privileged context via a crafted app, as demonstrated by lack of verification o...
Apple Mac Os X
NA
CVE-2014-8819
The Intel Graphics Driver in Apple OS X prior to 10.10.2 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2014-8820 and CVE-2014-8821.
Apple Mac Os X
NA
CVE-2014-8820
The Intel Graphics Driver in Apple OS X prior to 10.10.2 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2014-8819 and CVE-2014-8821.
Apple Mac Os X
NA
CVE-2014-8822
IOHIDFamily in Apple OS X prior to 10.10.2 allows malicious users to execute arbitrary code in a kernel context or cause a denial of service (write to kernel memory) via a crafted app that calls an unspecified user-client method.
Apple Mac Os X
NA
CVE-2014-8824
The kernel in Apple OS X prior to 10.10.2 does not properly validate IODataQueue object metadata fields, which allows malicious users to execute arbitrary code in a privileged context via a crafted app.
Apple Mac Os X
NA
CVE-2014-8826
LaunchServices in Apple OS X prior to 10.10.2 does not properly handle file-type metadata, which allows malicious users to bypass the Gatekeeper protection mechanism via a crafted JAR archive.
Apple Mac Os X
1 EDB exploit
NA
CVE-2014-8827
LoginWindow in Apple OS X prior to 10.10.2 does not transition to the lock-screen state immediately upon being woken from sleep, which allows physically proximate malicious users to obtain sensitive information by reading the screen.
Apple Mac Os X
NA
CVE-2014-8829
SceneKit in Apple OS X prior to 10.10.2 allows malicious users to execute arbitrary code or cause a denial of service (out-of-bounds write) via a crafted app.
Apple Mac Os X
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »