Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
apple mac os x 10.8.4 vulnerabilities and exploits
(subscribe to this query)
187
VMScore
CVE-2013-3949
The posix_spawn system call in the XNU kernel in Apple Mac OS X 10.8.x does not prevent use of the _POSIX_SPAWN_DISABLE_ASLR and _POSIX_SPAWN_ALLOW_DATA_EXEC flags for setuid and setgid programs, which allows local users to bypass intended access restrictions via a wrapper progra...
Apple Mac Os X 10.8.3
Apple Mac Os X 10.8.4
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.2
Apple Mac Os X 10.8.1
187
VMScore
CVE-2013-3952
The fill_pipeinfo function in bsd/kern/sys_pipe.c in the XNU kernel in Apple Mac OS X 10.8.x allows local users to defeat the KASLR protection mechanism via the PROC_PIDFDPIPEINFO option to the proc_info system call for a kernel pipe handle.
Apple Mac Os X 10.8.3
Apple Mac Os X 10.8.4
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.2
Apple Mac Os X 10.8.1
587
VMScore
CVE-2013-5163
Directory Services in Apple Mac OS X prior to 10.8.5 Supplemental Update allows local users to bypass password-based authentication and modify arbitrary Directory Services records via unspecified vectors.
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.1
Apple Mac Os X 10.8.2
Apple Mac Os X 10.8.3
Apple Mac Os X
Apple Mac Os X 10.8.4
570
VMScore
CVE-2013-5165
socketfilterfw in Application Firewall in Apple Mac OS X prior to 10.9 does not properly implement the --blockApp option, which allows remote malicious users to bypass intended access restrictions via a network connection to an application for which blocking was configured.
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.1
Apple Mac Os X 10.8.2
Apple Mac Os X 10.8.3
Apple Mac Os X 10.8.4
Apple Mac Os X
Apple Mac Os X 10.8.5
320
VMScore
CVE-2014-1257
CFNetwork in Apple OS X up to and including 10.8.5 does not remove session cookies upon a Safari reset action, which allows physically proximate malicious users to bypass intended access restrictions by leveraging an unattended workstation.
Apple Mac Os X 10.8.5
Apple Mac Os X 10.8.3
Apple Mac Os X 10.8.2
Apple Mac Os X 10.8.1
Apple Mac Os X 10.8.0
Apple Mac Os X
Apple Mac Os X 10.8.4
605
VMScore
CVE-2014-1260
QuickLook in Apple OS X up to and including 10.8.5 allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Microsoft Office document.
Apple Mac Os X 10.8.2
Apple Mac Os X
Apple Mac Os X 10.8.5
Apple Mac Os X 10.8.4
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.3
Apple Mac Os X 10.8.1
169
VMScore
CVE-2013-5169
CoreGraphics in Apple Mac OS X prior to 10.9, when display-sleep mode is used, does not ensure that screen locking blocks the visibility of all windows, which allows physically proximate malicious users to obtain sensitive information by reading the screen.
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.1
Apple Mac Os X 10.8.2
Apple Mac Os X 10.8.3
Apple Mac Os X 10.8.5
Apple Mac Os X 10.8.4
Apple Mac Os X
187
VMScore
CVE-2013-5173
The random-number generator in the kernel in Apple Mac OS X prior to 10.9 provides lengthy exclusive access for processing of large requests, which allows local users to cause a denial of service (temporary generator outage) via an application that requires many random numbers.
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.2
Apple Mac Os X 10.8.4
Apple Mac Os X 10.8.5
Apple Mac Os X
Apple Mac Os X 10.8.1
Apple Mac Os X 10.8.3
231
VMScore
CVE-2013-5183
Mail in Apple Mac OS X prior to 10.9, when Kerberos authentication is enabled and TLS is disabled, sends invalid cleartext data, which allows remote malicious users to obtain sensitive information by sniffing the network.
Apple Mac Os X
Apple Mac Os X 10.8.1
Apple Mac Os X 10.8.2
Apple Mac Os X 10.8.3
Apple Mac Os X 10.8.4
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.5
187
VMScore
CVE-2013-5186
Power Management in Apple Mac OS X prior to 10.9 does not properly handle the interaction between locking and power assertions, which allows physically proximate malicious users to obtain sensitive information by reading a screen that should have transitioned into the locked stat...
Apple Mac Os X 10.8.5
Apple Mac Os X 10.8.0
Apple Mac Os X 10.8.1
Apple Mac Os X 10.8.2
Apple Mac Os X 10.8.3
Apple Mac Os X 10.8.4
Apple Mac Os X
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »