Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mail vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2008-3646
The Postfix configuration file in Mac OS X 10.5.5 causes Postfix to be network-accessible when mail is sent from a local command-line tool, which allows remote malicious users to send mail to local Mac OS X users.
Apple Mac Os X 10.5.5
NA
CVE-2022-42834
An access issue was addressed with improved access restrictions. This issue is fixed in macOS Monterey 12.6.3, macOS Ventura 13, macOS Big Sur 11.7.3. An app may be able to access mail folder attachments through a temporary directory used during compression
Apple Macos
5.1
CVSSv2
CVE-2006-3497
Unspecified vulnerability in the "compression state handling" in Bom for Apple Mac OS X 10.3.9 and 10.4.7 allows user-assisted malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted Zip archive.
Apple Mac Os X 10.3.9
Apple Mac Os X 10.4.7
Apple Mac Os X Server 10.3.9
Apple Mac Os X Server 10.4.7
4.3
CVSSv2
CVE-2019-7284
This issue was addressed with improved checks. This issue is fixed in iOS 12.2. Processing a maliciously crafted mail message may lead to S/MIME signature spoofing.
Apple Iphone Os
1.9
CVSSv2
CVE-2015-1113
The Sandbox Profiles component in Apple iOS prior to 8.3 allows malicious users to read the (1) telephone number or (2) e-mail address of a recent contact via a crafted app.
Apple Iphone Os
4.3
CVSSv2
CVE-2022-22592
A logic issue was addressed with improved state management. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. Processing maliciously crafted web content may prevent Content Security Policy from being enforced.
Apple Safari
Apple Tvos
Apple Watchos
Apple Ipados
Apple Iphone
Apple Macos
6.8
CVSSv2
CVE-2022-22590
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. Processing maliciously crafted web content may lead to arbitrary code execution.
Apple Watchos
Apple Iphone Os
Apple Ipados
Apple Macos
Apple Safari
Apple Tvos
7.5
CVSSv2
CVE-2004-1021
iCal prior to 1.5.4 on Mac OS X 10.2.3, and other later versions, does not alert the user when handling calendars that use alarms, which allows malicious users to execute programs and send e-mail via alarms.
Apple Ical 1.5.3
4.3
CVSSv2
CVE-2017-7097
An issue exists in certain Apple products. iOS prior to 11 is affected. The issue involves the "Mail MessageUI" component. It allows malicious users to cause a denial of service (memory corruption) via a crafted image.
Apple Iphone Os
4.3
CVSSv2
CVE-2017-7152
An issue exists in certain Apple products. iOS prior to 11.2 is affected. The issue involves the "Mail Message Framework" component. It allows remote malicious users to spoof the address bar via a crafted web site.
Apple Iphone Os
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »