Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.12 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2016-7580
An issue exists in certain Apple products. macOS prior to 10.12 is affected. The issue involves the "Mail" component, which allows remote web servers to cause a denial of service via a crafted URL.
Apple Mac Os X
6.5
CVSSv3
CVE-2016-4708
CFNetwork in Apple iOS prior to 10, OS X prior to 10.12, tvOS prior to 10, and watchOS prior to 3 misparses the Set-Cookie header, which allows remote malicious users to obtain sensitive information via a crafted HTTP response.
Apple Watchos
Apple Tvos
Apple Iphone Os
Apple Mac Os X
6.5
CVSSv3
CVE-2016-4718
Buffer overflow in FontParser in Apple iOS prior to 10, OS X prior to 10.12, tvOS prior to 10, and watchOS prior to 3 allows remote malicious users to obtain sensitive information from process memory via a crafted font file.
Apple Watchos
Apple Tvos
Apple Iphone Os
Apple Mac Os X
6.2
CVSSv3
CVE-2016-4701
Application Firewall in Apple OS X prior to 10.12 allows local users to cause a denial of service via vectors involving a crafted SO_EXECPATH environment variable.
Apple Mac Os X
5.9
CVSSv3
CVE-2016-4722
The IDS - Connectivity component in Apple iOS prior to 10 and OS X prior to 10.12 allows man-in-the-middle malicious users to conduct Call Relay spoofing attacks and cause a denial of service via unspecified vectors.
Apple Iphone Os
Apple Mac Os X
5.5
CVSSv3
CVE-2016-4771
The kernel in Apple iOS prior to 10 and OS X prior to 10.12 allows local users to bypass intended file-access restrictions via a crafted directory pathname.
Apple Iphone Os
Apple Mac Os X
5.5
CVSSv3
CVE-2016-4706
cd9660 in Apple OS X prior to 10.12 allows local users to cause a denial of service via unspecified vectors.
Apple Mac Os X
5.5
CVSSv3
CVE-2016-4742
NSSecureTextField in Apple OS X prior to 10.12 does not enable Secure Input, which allows malicious users to discover credentials via a crafted app.
Apple Mac Os X
5.5
CVSSv3
CVE-2016-4752
The SecKeyDeriveFromPassword function in Apple OS X prior to 10.12 does not use the CF_RETURNS_RETAINED keyword, which allows malicious users to obtain sensitive information from process memory by triggering key derivation.
Apple Mac Os X
5.5
CVSSv3
CVE-2016-4755
Terminal in Apple OS X prior to 10.12 uses weak permissions for the .bash_history and .bash_session files, which allows local users to obtain sensitive information via unspecified vectors.
Apple Mac Os X
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-6267
XML injection
CVE-2024-37673
CVE-2024-6266
CVE-2024-30078
arbitrary
CVE-2024-36886
CVE-2024-5346
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »