Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.10.2 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-8827
LoginWindow in Apple OS X prior to 10.10.2 does not transition to the lock-screen state immediately upon being woken from sleep, which allows physically proximate malicious users to obtain sensitive information by reading the screen.
Apple Mac Os X
NA
CVE-2014-8836
The Bluetooth driver in Apple OS X prior to 10.10.2 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (arbitrary-size bzero of kernel memory) via a crafted app.
Apple Mac Os X
NA
CVE-2014-8830
Heap-based buffer overflow in SceneKit in Apple OS X prior to 10.10.2 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted accessor element in a Collada file.
Apple Mac Os X
NA
CVE-2014-8833
SpotlightIndex in Apple OS X prior to 10.10.2 does not properly perform deserialization during access to a permission cache, which allows local users to read search results associated with other users' protected files via a Spotlight query.
Apple Mac Os X
NA
CVE-2014-8823
The IOUSBControllerUserClient::ReadRegister function in the IOUSB controller in IOUSBFamily in Apple OS X prior to 10.10.2 allows local users to read data from arbitrary kernel-memory locations by leveraging root access and providing a crafted first argument.
Apple Mac Os X
NA
CVE-2014-8831
security_taskgate in Apple OS X prior to 10.10.2 allows malicious users to read group-ACL-restricted keychain items of arbitrary apps via a crafted app with a signature from a (1) self-signed certificate or (2) Developer ID certificate.
Apple Mac Os X
NA
CVE-2014-4498
The CPU Software in Apple OS X prior to 10.10.2 allows physically proximate malicious users to modify firmware during the EFI update process by inserting a Thunderbolt device with crafted code in an Option ROM, aka the "Thunderstrike" issue.
Apple Mac Os X
NA
CVE-2014-8822
IOHIDFamily in Apple OS X prior to 10.10.2 allows malicious users to execute arbitrary code in a kernel context or cause a denial of service (write to kernel memory) via a crafted app that calls an unspecified user-client method.
Apple Mac Os X
NA
CVE-2014-8838
The Security component in Apple OS X prior to 10.10.2 does not properly process cached information about app certificates, which allows malicious users to bypass the Gatekeeper protection mechanism by leveraging access to a revoked Developer ID certificate for signing a crafted a...
Apple Mac Os X
NA
CVE-2014-8839
Spotlight in Apple OS X prior to 10.10.2 does not enforce the Mail "Load remote content in messages" configuration, which allows remote malicious users to discover recipient IP addresses by including an inline image in an HTML e-mail message and logging HTTP requests fo...
Apple Mac Os X
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »