Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.12 vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2016-4709
WindowServer in Apple OS X prior to 10.12 allows local users to obtain root access via vectors that leverage "type confusion," a different vulnerability than CVE-2016-4710.
Apple Mac Os X
7.8
CVSSv3
CVE-2016-4710
WindowServer in Apple OS X prior to 10.12 allows local users to obtain root access via vectors that leverage "type confusion," a different vulnerability than CVE-2016-4709.
Apple Mac Os X
5.5
CVSSv3
CVE-2016-4755
Terminal in Apple OS X prior to 10.12 uses weak permissions for the .bash_history and .bash_session files, which allows local users to obtain sensitive information via unspecified vectors.
Apple Mac Os X
3.3
CVSSv3
CVE-2016-4715
The Date & Time Pref Pane component in Apple OS X prior to 10.12 mishandles the .GlobalPreferences file, which allows malicious users to discover a user's location via a crafted app.
Apple Mac Os X
3.3
CVSSv3
CVE-2016-4717
The File Bookmark component in Apple OS X prior to 10.12 mishandles scoped-bookmark file descriptors, which allows malicious users to cause a denial of service via a crafted app.
Apple Mac Os X
8.8
CVSSv3
CVE-2016-4736
libarchive in Apple OS X prior to 10.12 allows remote malicious users to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted file.
Apple Mac Os X
8.8
CVSSv3
CVE-2016-4617
An issue exists in certain Apple products. macOS prior to 10.12 is affected. The issue involves a sandbox escape related to launchctl process spawning in the "libxpc" component.
Apple Mac Os X
7.8
CVSSv3
CVE-2016-4703
Bluetooth in Apple OS X prior to 10.12 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
Apple Mac Os X
7.8
CVSSv3
CVE-2016-4727
IOThunderboltFamily in Apple OS X prior to 10.12 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
Apple Mac Os X
5.5
CVSSv3
CVE-2016-4752
The SecKeyDeriveFromPassword function in Apple OS X prior to 10.12 does not use the CF_RETURNS_RETAINED keyword, which allows malicious users to obtain sensitive information from process memory by triggering key derivation.
Apple Mac Os X
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »