Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.12 vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2016-4745
The Kerberos 5 (aka krb5) PAM module in Apple OS X prior to 10.12 does not use constant-time operations for determining username validity, which makes it easier for remote malicious users to enumerate user accounts via a timing side-channel attack.
Apple Mac Os X
409
VMScore
CVE-2016-4748
Perl in Apple OS X prior to 10.12 allows local users to bypass the taint-mode protection mechanism via a crafted environment variable.
Apple Mac Os X
828
VMScore
CVE-2016-4750
S2 Camera in Apple iOS prior to 10 and OS X prior to 10.12 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
Apple Iphone Os
Apple Mac Os X
383
VMScore
CVE-2016-4752
The SecKeyDeriveFromPassword function in Apple OS X prior to 10.12 does not use the CF_RETURNS_RETAINED keyword, which allows malicious users to obtain sensitive information from process memory by triggering key derivation.
Apple Mac Os X
828
VMScore
CVE-2016-4753
Apple iOS prior to 10, OS X prior to 10.12, tvOS prior to 10, and watchOS prior to 3 mishandle signed disk images, which allows malicious users to execute arbitrary code in a privileged context via a crafted app.
Apple Iphone Os
Apple Mac Os X
Apple Tvos
Apple Watchos
187
VMScore
CVE-2016-4755
Terminal in Apple OS X prior to 10.12 uses weak permissions for the .bash_history and .bash_session files, which allows local users to obtain sensitive information via unspecified vectors.
Apple Mac Os X
730
VMScore
CVE-2016-4625
Use-after-free vulnerability in IOSurface in Apple OS X prior to 10.11.6 allows local users to gain privileges via unspecified vectors.
Apple Mac Os X
2 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6