Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x server 10.7.0 vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2011-3436
Open Directory in Apple Mac OS X 10.7 prior to 10.7.2 does not require a user to provide the current password before changing this password, which allows remote malicious users to bypass intended password-change restrictions by leveraging an unattended workstation.
Apple Mac Os X Server 10.7.1
Apple Mac Os X Server 10.7.0
Apple Mac Os X 10.7.0
Apple Mac Os X 10.7.1
605
VMScore
CVE-2011-3226
Open Directory in Apple Mac OS X 10.7 prior to 10.7.2, when an LDAPv3 server is used with RFC 2307 or custom mappings, allows remote malicious users to bypass the password requirement by leveraging lack of an AuthenticationAuthority attribute for a user account.
Apple Mac Os X Server 10.7.1
Apple Mac Os X Server 10.7.0
Apple Mac Os X 10.7.0
Apple Mac Os X 10.7.1
187
VMScore
CVE-2011-3212
CoreStorage in Apple Mac OS X 10.7 prior to 10.7.2 does not ensure that all disk data is encrypted during the enabling of FileVault, which makes it easier for physically proximate malicious users to obtain sensitive information by reading directly from the disk device.
Apple Mac Os X Server 10.7.1
Apple Mac Os X Server 10.7.0
Apple Mac Os X 10.7.0
Apple Mac Os X 10.7.1
409
VMScore
CVE-2011-0260
The CoreProcesses component in Apple Mac OS X 10.7 prior to 10.7.2 does not prevent a system window from receiving keystrokes in the locked-screen state, which might allow physically proximate malicious users to bypass intended access restrictions by typing into this window.
Apple Mac Os X Server 10.7.1
Apple Mac Os X Server 10.7.0
Apple Mac Os X 10.7.0
Apple Mac Os X 10.7.1
383
VMScore
CVE-2011-3447
CFNetwork in Apple Mac OS X 10.7.x prior to 10.7.3 does not properly construct request headers during parsing of URLs, which allows remote malicious users to obtain sensitive information via a malformed URL.
Apple Mac Os X Server 10.7.1
Apple Mac Os X Server 10.7.2
Apple Mac Os X 10.7.2
Apple Mac Os X Server 10.7.0
Apple Mac Os X 10.7.0
Apple Mac Os X 10.7.1
605
VMScore
CVE-2012-0661
Use-after-free vulnerability in QuickTime in Apple Mac OS X 10.7.x prior to 10.7.4 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with JPEG2000 encoding.
Apple Mac Os X 10.7.2
Apple Mac Os X 10.7.0
Apple Mac Os X 10.7.1
Apple Mac Os X Server 10.7.1
Apple Mac Os X Server 10.7.2
Apple Mac Os X Server 10.7.0
605
VMScore
CVE-2011-3450
CoreUI in Apple Mac OS X 10.7.x prior to 10.7.3 does not properly restrict the allocation of stack memory, which allows remote malicious users to execute arbitrary code or cause a denial of service (memory consumption and application crash) via a long URL.
Apple Mac Os X Server 10.7.1
Apple Mac Os X Server 10.7.2
Apple Mac Os X 10.7.2
Apple Mac Os X Server 10.7.0
Apple Mac Os X 10.7.0
Apple Mac Os X 10.7.1
641
VMScore
CVE-2011-3463
WebDAV Sharing in Apple Mac OS X 10.7.x prior to 10.7.3 does not properly perform authentication, which allows local users to gain privileges by leveraging access to (1) the server or (2) a bound directory.
Apple Mac Os X Server 10.7.1
Apple Mac Os X Server 10.7.2
Apple Mac Os X 10.7.2
Apple Mac Os X Server 10.7.0
Apple Mac Os X 10.7.0
Apple Mac Os X 10.7.1
672
VMScore
CVE-2012-3716
CoreText in Apple Mac OS X 10.7.x prior to 10.7.5 allows remote malicious users to execute arbitrary code or cause a denial of service (out-of-bounds write or read) via a crafted text glyph.
Apple Mac Os X 10.7.2
Apple Mac Os X 10.7.3
Apple Mac Os X 10.7.4
Apple Mac Os X 10.7.0
Apple Mac Os X 10.7.1
Apple Mac Os X Server 10.7.3
Apple Mac Os X Server 10.7.1
Apple Mac Os X Server 10.7.2
Apple Mac Os X Server 10.7.0
Apple Mac Os X Server 10.7.4
12 Github repositories
605
VMScore
CVE-2013-0973
Software Update in Apple Mac OS X up to and including 10.7.5 does not prevent plugin loading within the marketing-text WebView, which allows man-in-the-middle malicious users to execute plugin code by modifying the client-server data stream.
Apple Mac Os X 10.6.8
Apple Mac Os X Server 10.6.8
Apple Mac Os X Server 10.7.3
Apple Mac Os X Server 10.7.1
Apple Mac Os X Server 10.7.5
Apple Mac Os X Server 10.7.2
Apple Mac Os X 10.7.2
Apple Mac Os X 10.7.5
Apple Mac Os X 10.7.3
Apple Mac Os X 10.7.4
Apple Mac Os X Server 10.7.0
Apple Mac Os X 10.7.0
Apple Mac Os X Server 10.7.4
Apple Mac Os X 10.7.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »