macOS Mojave
by Apple Inc.
CVEs (217)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-4403 | Med | 0.36 | 5.5 | 0.01 | Apr 3, 2019 | This issue was addressed by removing additional entitlements. This issue affected versions prior to macOS Mojave 10.14.1. | ||
| CVE-2018-4400 | Med | 0.36 | 5.5 | 0.01 | Apr 3, 2019 | A validation issue was addressed with improved logic. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, watchOS 5.1. | ||
| CVE-2018-4396 | Med | 0.36 | 5.5 | 0.01 | Apr 3, 2019 | A validation issue was addressed with improved input sanitization. This issue affected versions prior to macOS Mojave 10.14. | ||
| CVE-2018-4355 | Med | 0.36 | 5.5 | 0.01 | Apr 3, 2019 | A configuration issue was addressed with additional restrictions. This issue affected versions prior to iOS 12, macOS Mojave 10.14. | ||
| CVE-2018-4351 | Med | 0.36 | 5.5 | 0.01 | Apr 3, 2019 | A memory initialization issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14. | ||
| CVE-2018-4346 | Med | 0.36 | 5.5 | 0.01 | Apr 3, 2019 | A validation issue existed which allowed local file access. This was addressed with input sanitization. This issue affected versions prior to macOS Mojave 10.14. | ||
| CVE-2018-4342 | Med | 0.36 | 5.5 | 0.00 | Apr 3, 2019 | A configuration issue was addressed with additional restrictions. This issue affected versions prior to macOS Mojave 10.14.1. | ||
| CVE-2018-4338 | Med | 0.36 | 5.5 | 0.01 | Apr 3, 2019 | A validation issue was addressed with improved input sanitization. This issue affected versions prior to macOS Mojave 10.14. | ||
| CVE-2018-4333 | Med | 0.36 | 5.5 | 0.01 | Apr 3, 2019 | A validation issue was addressed with improved input sanitization. This issue affected versions prior to iOS 12, macOS Mojave 10.14. | ||
| CVE-2018-4308 | Med | 0.36 | 5.5 | 0.01 | Apr 3, 2019 | An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to macOS Mojave 10.14. | ||
| CVE-2019-6220 | Med | 0.36 | 5.5 | 0.01 | Mar 5, 2019 | An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Mojave 10.14.3. An application may be able to read restricted memory. | ||
| CVE-2018-4321 | Med | 0.35 | 5.3 | 0.01 | Apr 3, 2019 | A validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12. | ||
| CVE-2019-8667 | Med | 0.34 | 5.3 | 0.00 | Dec 18, 2019 | An inconsistent user interface issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.6. The encryption status of a Time Machine backup may be incorrect. | ||
| CVE-2018-4304 | Med | 0.33 | 5.0 | 0.01 | Apr 3, 2019 | A denial of service issue was addressed with improved validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5. | ||
| CVE-2019-8670 | Med | 0.28 | 4.3 | 0.01 | Dec 18, 2019 | An inconsistent user interface issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.6, Safari 12.1.2. Visiting a malicious website may lead to address bar spoofing. | ||
| CVE-2019-8502 | Low | 0.22 | 3.3 | 0.01 | Dec 18, 2019 | An API issue existed in the handling of dictation requests. This issue was addressed with improved validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to initiate a Dictation request without user… | ||
| CVE-2019-8642 | Low | 0.21 | 3.3 | 0.00 | Oct 27, 2020 | An issue existed in the handling of S-MIME certificates. This issue was addressed with improved validation of S-MIME certificates. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. Processing a maliciously crafted… |
- risk 0.36cvss 5.5epss 0.01
This issue was addressed by removing additional entitlements. This issue affected versions prior to macOS Mojave 10.14.1.
- risk 0.36cvss 5.5epss 0.01
A validation issue was addressed with improved logic. This issue affected versions prior to iOS 12.1, macOS Mojave 10.14.1, watchOS 5.1.
- risk 0.36cvss 5.5epss 0.01
A validation issue was addressed with improved input sanitization. This issue affected versions prior to macOS Mojave 10.14.
- risk 0.36cvss 5.5epss 0.01
A configuration issue was addressed with additional restrictions. This issue affected versions prior to iOS 12, macOS Mojave 10.14.
- risk 0.36cvss 5.5epss 0.01
A memory initialization issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14.
- risk 0.36cvss 5.5epss 0.01
A validation issue existed which allowed local file access. This was addressed with input sanitization. This issue affected versions prior to macOS Mojave 10.14.
- risk 0.36cvss 5.5epss 0.00
A configuration issue was addressed with additional restrictions. This issue affected versions prior to macOS Mojave 10.14.1.
- risk 0.36cvss 5.5epss 0.01
A validation issue was addressed with improved input sanitization. This issue affected versions prior to macOS Mojave 10.14.
- risk 0.36cvss 5.5epss 0.01
A validation issue was addressed with improved input sanitization. This issue affected versions prior to iOS 12, macOS Mojave 10.14.
- risk 0.36cvss 5.5epss 0.01
An out-of-bounds read was addressed with improved bounds checking. This issue affected versions prior to macOS Mojave 10.14.
- risk 0.36cvss 5.5epss 0.01
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Mojave 10.14.3. An application may be able to read restricted memory.
- risk 0.35cvss 5.3epss 0.01
A validation issue existed in the entitlement verification. This issue was addressed with improved validation of the process entitlement. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12.
- risk 0.34cvss 5.3epss 0.00
An inconsistent user interface issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.6. The encryption status of a Time Machine backup may be incorrect.
- risk 0.33cvss 5.0epss 0.01
A denial of service issue was addressed with improved validation. This issue affected versions prior to iOS 12, macOS Mojave 10.14, tvOS 12, watchOS 5.
- risk 0.28cvss 4.3epss 0.01
An inconsistent user interface issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.6, Safari 12.1.2. Visiting a malicious website may lead to address bar spoofing.
- risk 0.22cvss 3.3epss 0.01
An API issue existed in the handling of dictation requests. This issue was addressed with improved validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to initiate a Dictation request without user…
- risk 0.21cvss 3.3epss 0.00
An issue existed in the handling of S-MIME certificates. This issue was addressed with improved validation of S-MIME certificates. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. Processing a maliciously crafted…
Page 11 of 11