Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.10.4 vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2015-3707
The FireWire driver in IOFireWireFamily in Apple OS X prior to 10.10.4 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app.
Apple Mac Os X
9.3
CVSSv2
CVE-2015-3712
The NVIDIA graphics driver in Apple OS X prior to 10.10.4 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (out-of-bounds write) via a crafted app.
Apple Mac Os X
9.3
CVSSv2
CVE-2015-3704
runner in Install.framework in the Install Framework Legacy subsystem in Apple OS X prior to 10.10.4 does not properly drop privileges, which allows malicious users to execute arbitrary code in a privileged context via a crafted app.
Apple Mac Os X
1 EDB exploit
9.3
CVSSv2
CVE-2015-3683
The Bluetooth HCI interface implementation in Apple OS X prior to 10.10.4 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
Apple Mac Os X
9.3
CVSSv2
CVE-2015-3691
The Monitor Control Command Set kernel extension in the Display Drivers subsystem in Apple OS X prior to 10.10.4 allows malicious users to execute arbitrary code in a privileged context via a crafted app that leverages control of a function pointer.
Apple Mac Os X
9.3
CVSSv2
CVE-2015-3705
IOAcceleratorFamily in Apple OS X prior to 10.10.4 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2015-3706.
Apple Mac Os X
9.3
CVSSv2
CVE-2015-3706
IOAcceleratorFamily in Apple OS X prior to 10.10.4 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2015-3705.
Apple Mac Os X
9.3
CVSSv2
CVE-2015-3693
Apple Mac EFI prior to 2015-001, as used in OS X prior to 10.10.4 and other products, does not properly set refresh rates for DDR3 RAM, which might make it easier for remote malicious users to conduct row-hammer attacks, and consequently gain privileges or cause a denial of servi...
Apple Mac Os X
1 EDB exploit
8.8
CVSSv2
CVE-2015-3708
kextd in kext tools in Apple OS X prior to 10.10.4 allows malicious users to write to arbitrary files via a crafted app that conducts a symlink attack.
Apple Mac Os X
7.5
CVSSv2
CVE-2015-7036
The fts3_tokenizer function in SQLite, as used in Apple iOS prior to 8.4 and OS X prior to 10.10.4, allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a SQL command that triggers an API call with a crafted pointer value in...
Apple Mac Os X
Apple Iphone Os
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »