Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.10.2 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-8827
LoginWindow in Apple OS X prior to 10.10.2 does not transition to the lock-screen state immediately upon being woken from sleep, which allows physically proximate malicious users to obtain sensitive information by reading the screen.
Apple Mac Os X
NA
CVE-2014-8836
The Bluetooth driver in Apple OS X prior to 10.10.2 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (arbitrary-size bzero of kernel memory) via a crafted app.
Apple Mac Os X
NA
CVE-2014-8830
Heap-based buffer overflow in SceneKit in Apple OS X prior to 10.10.2 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted accessor element in a Collada file.
Apple Mac Os X
NA
CVE-2014-8833
SpotlightIndex in Apple OS X prior to 10.10.2 does not properly perform deserialization during access to a permission cache, which allows local users to read search results associated with other users' protected files via a Spotlight query.
Apple Mac Os X
NA
CVE-2014-4498
The CPU Software in Apple OS X prior to 10.10.2 allows physically proximate malicious users to modify firmware during the EFI update process by inserting a Thunderbolt device with crafted code in an Option ROM, aka the "Thunderstrike" issue.
Apple Mac Os X
NA
CVE-2014-8823
The IOUSBControllerUserClient::ReadRegister function in the IOUSB controller in IOUSBFamily in Apple OS X prior to 10.10.2 allows local users to read data from arbitrary kernel-memory locations by leveraging root access and providing a crafted first argument.
Apple Mac Os X
NA
CVE-2014-8831
security_taskgate in Apple OS X prior to 10.10.2 allows malicious users to read group-ACL-restricted keychain items of arbitrary apps via a crafted app with a signature from a (1) self-signed certificate or (2) Developer ID certificate.
Apple Mac Os X
NA
CVE-2014-8822
IOHIDFamily in Apple OS X prior to 10.10.2 allows malicious users to execute arbitrary code in a kernel context or cause a denial of service (write to kernel memory) via a crafted app that calls an unspecified user-client method.
Apple Mac Os X
NA
CVE-2014-8838
The Security component in Apple OS X prior to 10.10.2 does not properly process cached information about app certificates, which allows malicious users to bypass the Gatekeeper protection mechanism by leveraging access to a revoked Developer ID certificate for signing a crafted a...
Apple Mac Os X
6.5
CVSSv3
CVE-2014-8130
The _TIFFmalloc function in tif_unix.c in LibTIFF 4.0.3 does not reject a zero size, which allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted TIFF image that is mishandled by the TIFFWriteScanline function in tif_...
Libtiff Libtiff 4.0.3
Redhat Enterprise Linux Server Eus 7.2
Redhat Enterprise Linux Server Eus 7.3
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Server Aus 7.2
Redhat Enterprise Linux Server Aus 7.4
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server Tus 7.3
Redhat Enterprise Linux Server Tus 7.2
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Server Aus 7.3
Redhat Enterprise Linux Server Eus 7.4
Redhat Enterprise Linux Workstation 6.0
Apple Mac Os X 10.8.5
Apple Mac Os X 10.9.5
Apple Mac Os X 10.10.0
Apple Mac Os X 10.10.1
Apple Mac Os X 10.10.2
Apple Mac Os X 10.10.3
Apple Iphone Os
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »