Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.10.4 vulnerabilities and exploits
(subscribe to this query)
935
VMScore
CVE-2015-3704
runner in Install.framework in the Install Framework Legacy subsystem in Apple OS X prior to 10.10.4 does not properly drop privileges, which allows malicious users to execute arbitrary code in a privileged context via a crafted app.
Apple Mac Os X
1 EDB exploit
935
VMScore
CVE-2015-3693
Apple Mac EFI prior to 2015-001, as used in OS X prior to 10.10.4 and other products, does not properly set refresh rates for DDR3 RAM, which might make it easier for remote malicious users to conduct row-hammer attacks, and consequently gain privileges or cause a denial of servi...
Apple Mac Os X
1 EDB exploit
828
VMScore
CVE-2015-3707
The FireWire driver in IOFireWireFamily in Apple OS X prior to 10.10.4 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app.
Apple Mac Os X
828
VMScore
CVE-2015-3712
The NVIDIA graphics driver in Apple OS X prior to 10.10.4 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (out-of-bounds write) via a crafted app.
Apple Mac Os X
828
VMScore
CVE-2015-3683
The Bluetooth HCI interface implementation in Apple OS X prior to 10.10.4 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
Apple Mac Os X
828
VMScore
CVE-2015-3691
The Monitor Control Command Set kernel extension in the Display Drivers subsystem in Apple OS X prior to 10.10.4 allows malicious users to execute arbitrary code in a privileged context via a crafted app that leverages control of a function pointer.
Apple Mac Os X
828
VMScore
CVE-2015-3705
IOAcceleratorFamily in Apple OS X prior to 10.10.4 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2015-3706.
Apple Mac Os X
828
VMScore
CVE-2015-3706
IOAcceleratorFamily in Apple OS X prior to 10.10.4 allows malicious users to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2015-3705.
Apple Mac Os X
783
VMScore
CVE-2015-3708
kextd in kext tools in Apple OS X prior to 10.10.4 allows malicious users to write to arbitrary files via a crafted app that conducts a symlink attack.
Apple Mac Os X
725
VMScore
CVE-2015-3673
Admin Framework in Apple OS X prior to 10.10.4 does not properly restrict the location of writeconfig clients, which allows local users to obtain root privileges by moving and then modifying Directory Utility.
Apple Mac Os X
1 EDB exploit
1 Github repository
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »