Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

apple mac os x vulnerabilities and exploits

(subscribe to this query)
5
CVSSv2

CVE-2014-4458

The "System Profiler About This Mac" component in Apple OS X prior to 10.10.1 includes extraneous cookie data in system-model requests, which might allow remote malicious users to obtain sensitive information via unspecified vectors.
Apple Mac Os XApple Mac Os X 10.0Apple Mac Os X 10.0.0Apple Mac Os X 10.0.1Apple Mac Os X 10.0.2Apple Mac Os X 10.0.3Apple Mac Os X 10.0.4Apple Mac Os X 10.1Apple Mac Os X 10.1.0Apple Mac Os X 10.1.1Apple Mac Os X 10.1.2Apple Mac Os X 10.1.3
5
CVSSv2

CVE-2012-3721

Profile Manager in Apple Mac OS X prior to 10.7.5 does not properly perform authentication for the Device Management private interface, which allows malicious users to enumerate managed devices via unspecified vectors.
Apple Mac Os XApple Mac Os X 10.0Apple Mac Os X 10.0.0Apple Mac Os X 10.0.1Apple Mac Os X 10.0.2Apple Mac Os X 10.0.3Apple Mac Os X 10.0.4Apple Mac Os X 10.1Apple Mac Os X 10.1.0Apple Mac Os X 10.1.1Apple Mac Os X 10.1.2Apple Mac Os X 10.1.3
2.1
CVSSv2

CVE-2014-4460

CFNetwork in Apple iOS prior to 8.1.1 and OS X prior to 10.10.1 does not properly clear the browsing cache upon a transition out of private-browsing mode, which makes it easier for physically proximate malicious users to obtain sensitive information by reading cache files.
Apple Iphone OsApple Iphone Os 8.0Apple Iphone Os 8.0.1Apple Iphone Os 8.0.2Apple Mac Os XApple Mac Os X 10.0Apple Mac Os X 10.0.0Apple Mac Os X 10.0.1Apple Mac Os X 10.0.2Apple Mac Os X 10.0.3Apple Mac Os X 10.0.4Apple Mac Os X 10.1
7.6
CVSSv2

CVE-2005-0970

Mac OS X 10.3.9 and previous versions allows users to install, create, and execute setuid/setgid scripts, contrary to the intended design, which may allow malicious users to conduct unauthorized activities with escalated privileges via vulnerable scripts.
Apple Mac Os X 10.0Apple Mac Os X 10.0.1Apple Mac Os X 10.0.2Apple Mac Os X 10.0.3Apple Mac Os X 10.0.4Apple Mac Os X 10.1Apple Mac Os X 10.1.1Apple Mac Os X 10.1.2Apple Mac Os X 10.1.3Apple Mac Os X 10.1.4Apple Mac Os X 10.1.5Apple Mac Os X 10.2
4.6
CVSSv2

CVE-2005-0971

Stack-based buffer overflow in the semop system call in Mac OS X 10.3.9 and previous versions allows local users to gain privileges via crafted arguments.
Apple Mac Os X 10.0Apple Mac Os X 10.0.1Apple Mac Os X 10.0.2Apple Mac Os X 10.0.3Apple Mac Os X 10.0.4Apple Mac Os X 10.1Apple Mac Os X 10.1.1Apple Mac Os X 10.1.2Apple Mac Os X 10.1.3Apple Mac Os X 10.1.4Apple Mac Os X 10.1.5Apple Mac Os X 10.2
2.1
CVSSv2

CVE-2005-0973

Unknown vulnerability in the setsockopt system call in Mac OS X 10.3.9 and previous versions allows local users to cause a denial of service (memory exhaustion) via crafted arguments.
Apple Mac Os X 10.0Apple Mac Os X 10.0.1Apple Mac Os X 10.0.2Apple Mac Os X 10.0.3Apple Mac Os X 10.0.4Apple Mac Os X 10.1Apple Mac Os X 10.1.1Apple Mac Os X 10.1.2Apple Mac Os X 10.1.3Apple Mac Os X 10.1.4Apple Mac Os X 10.1.5Apple Mac Os X 10.2
7.2
CVSSv2

CVE-2005-0974

Unknown vulnerability in the nfs_mount call in Mac OS X 10.3.9 and previous versions allows local users to gain privileges via crafted arguments.
Apple Mac Os X 10.0Apple Mac Os X 10.0.1Apple Mac Os X 10.0.2Apple Mac Os X 10.0.3Apple Mac Os X 10.0.4Apple Mac Os X 10.1Apple Mac Os X 10.1.1Apple Mac Os X 10.1.2Apple Mac Os X 10.1.3Apple Mac Os X 10.1.4Apple Mac Os X 10.1.5Apple Mac Os X 10.2
5
CVSSv2

CVE-2014-4453

Apple iOS prior to 8.1.1 and OS X prior to 10.10.1 include location data during establishment of a Spotlight Suggestions server connection by Spotlight or Safari, which might allow remote malicious users to obtain sensitive information via unspecified vectors.
Apple Iphone OsApple Iphone Os 8.0Apple Iphone Os 8.0.1Apple Iphone Os 8.0.2Apple Mac Os XApple Mac Os X 10.0Apple Mac Os X 10.0.0Apple Mac Os X 10.0.1Apple Mac Os X 10.0.2Apple Mac Os X 10.0.3Apple Mac Os X 10.0.4Apple Mac Os X 10.1
5.4
CVSSv2

CVE-2009-2808

Help Viewer in Apple Mac OS X prior to 10.6.2 does not use an HTTPS connection to retrieve Apple Help content from a web site, which allows man-in-the-middle malicious users to send a crafted help:runscript link, and thereby execute arbitrary code, via a spoofed response.
Apple Mac Os XApple Mac Os X 10.0Apple Mac Os X 10.0.0Apple Mac Os X 10.0.1Apple Mac Os X 10.0.2Apple Mac Os X 10.0.3Apple Mac Os X 10.0.4Apple Mac Os X 10.1Apple Mac Os X 10.1.0Apple Mac Os X 10.1.1Apple Mac Os X 10.1.2Apple Mac Os X 10.1.3
4.3
CVSSv2

CVE-2009-2823

The Apache HTTP Server in Apple Mac OS X prior to 10.6.2 enables the HTTP TRACE method, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via unspecified web client software.
Apple Mac Os XApple Mac Os X 10.0Apple Mac Os X 10.0.0Apple Mac Os X 10.0.1Apple Mac Os X 10.0.2Apple Mac Os X 10.0.3Apple Mac Os X 10.0.4Apple Mac Os X 10.1Apple Mac Os X 10.1.0Apple Mac Os X 10.1.1Apple Mac Os X 10.1.2Apple Mac Os X 10.1.3
Preferred Score:
CVSSv2
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-30214logic flawslider by 10webCVE-2025-29927CVE-2025-2736firewallip based loginCVE-2025-30212estatebudCVE-2022-1804brute forcejob postingsCVE-2025-24514
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook