Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.10.2 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2014-8831
security_taskgate in Apple OS X prior to 10.10.2 allows malicious users to read group-ACL-restricted keychain items of arbitrary apps via a crafted app with a signature from a (1) self-signed certificate or (2) Developer ID certificate.
Apple Mac Os X
5
CVSSv2
CVE-2014-8839
Spotlight in Apple OS X prior to 10.10.2 does not enforce the Mail "Load remote content in messages" configuration, which allows remote malicious users to discover recipient IP addresses by including an inline image in an HTML e-mail message and logging HTTP requests fo...
Apple Mac Os X
5
CVSSv2
CVE-2014-8826
LaunchServices in Apple OS X prior to 10.10.2 does not properly handle file-type metadata, which allows malicious users to bypass the Gatekeeper protection mechanism via a crafted JAR archive.
Apple Mac Os X
1 EDB exploit
4.9
CVSSv2
CVE-2014-8832
The indexing functionality in Spotlight in Apple OS X prior to 10.10.2 writes memory contents to an external hard drive, which allows local users to obtain sensitive information by reading from this drive.
Apple Mac Os X
4.7
CVSSv2
CVE-2014-4498
The CPU Software in Apple OS X prior to 10.10.2 allows physically proximate malicious users to modify firmware during the EFI update process by inserting a Thunderbolt device with crafted code in an Option ROM, aka the "Thunderstrike" issue.
Apple Mac Os X
4.7
CVSSv2
CVE-2014-8823
The IOUSBControllerUserClient::ReadRegister function in the IOUSB controller in IOUSBFamily in Apple OS X prior to 10.10.2 allows local users to read data from arbitrary kernel-memory locations by leveraging root access and providing a crafted first argument.
Apple Mac Os X
4.3
CVSSv2
CVE-2014-8130
The _TIFFmalloc function in tif_unix.c in LibTIFF 4.0.3 does not reject a zero size, which allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image that is mishandled by the TIFFWriteScanline function in tif_...
Libtiff Libtiff 4.0.3
Redhat Enterprise Linux Server Eus 7.2
Redhat Enterprise Linux Server Eus 7.3
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Server Aus 7.2
Redhat Enterprise Linux Server Aus 7.4
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server Tus 7.3
Redhat Enterprise Linux Server Tus 7.2
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Server Aus 7.3
Redhat Enterprise Linux Server Eus 7.4
Redhat Enterprise Linux Workstation 6.0
Apple Mac Os X 10.8.5
Apple Mac Os X 10.9.5
Apple Mac Os X 10.10.0
Apple Mac Os X 10.10.1
Apple Mac Os X 10.10.2
Apple Mac Os X 10.10.3
Apple Iphone Os
4.3
CVSSv2
CVE-2015-1067
Secure Transport in Apple iOS prior to 8.2, Apple OS X up to and including 10.10.2, and Apple TV prior to 7.1 does not properly restrict TLS state transitions, which makes it easier for remote malicious users to conduct cipher-downgrade attacks to EXPORT_RSA ciphers via crafted T...
Apple Mac Os X
Apple Tvos
Apple Iphone Os
2 Articles
4.3
CVSSv2
CVE-2014-8838
The Security component in Apple OS X prior to 10.10.2 does not properly process cached information about app certificates, which allows malicious users to bypass the Gatekeeper protection mechanism by leveraging access to a revoked Developer ID certificate for signing a crafted a...
Apple Mac Os X
2.1
CVSSv2
CVE-2014-4499
The App Store process in CommerceKit Framework in Apple OS X prior to 10.10.2 places Apple ID credentials in App Store logs, which allows local users to obtain sensitive information by reading a file.
Apple Mac Os X
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »