VYPR

macOS

by Apple Inc.

CVEs (3,324)

  • CVE-2023-42957Jul 29, 2024
    risk 0.00cvss epss 0.00

    A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10. An app may be able to read sensitive location information.

  • CVE-2023-42948Jul 29, 2024
    risk 0.00cvss epss 0.00

    This issue was addressed through improved state management. This issue is fixed in macOS Sonoma 14. A Wi-Fi password may not be deleted when activating a Mac in macOS Recovery.

  • CVE-2023-42925Jul 29, 2024
    risk 0.00cvss epss 0.00

    The issue was addressed with improved restriction of data container access. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to access Notes attachments.

  • CVE-2023-42949Jul 29, 2024
    risk 0.00cvss epss 0.00

    This issue was addressed with improved data protection. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17. An app may be able to access edited photos saved to a temporary directory.

  • CVE-2023-40396Jul 29, 2024
    risk 0.00cvss epss 0.00

    The issue was addressed with improved memory handling. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17. An app may be able to execute arbitrary code with kernel privileges.

  • CVE-2023-42958Jul 29, 2024
    risk 0.00cvss epss 0.00

    A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.4. An app may be able to gain elevated privileges.

  • CVE-2023-42959Jul 29, 2024
    risk 0.00cvss epss 0.00

    A race condition was addressed with improved state handling. This issue is fixed in macOS Sonoma 14. An app may be able to execute arbitrary code with kernel privileges.

  • CVE-2023-42918Jul 29, 2024
    risk 0.00cvss epss 0.00

    A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14. A sandboxed process may be able to circumvent sandbox restrictions.

  • CVE-2023-42943Jul 29, 2024
    risk 0.00cvss epss 0.00

    A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14. An app may be able to read sensitive location information.

  • CVE-2022-48578Jun 10, 2024
    risk 0.00cvss epss 0.00

    An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.5. Processing an AppleScript may result in unexpected termination or disclosure of process memory.

  • CVE-2022-32933Jun 10, 2024
    risk 0.00cvss epss 0.00

    An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in macOS Monterey 12.5. A website may be able to track the websites a user visited in Safari private browsing mode.

  • CVE-2022-48683Jun 10, 2024
    risk 0.00cvss epss 0.00

    An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Ventura 13. An app may be able to break out of its sandbox.

  • CVE-2023-40389Jun 10, 2024
    risk 0.00cvss epss 0.00

    The issue was addressed with improved restriction of data container access. This issue is fixed in macOS Ventura 13.6.5, macOS Monterey 12.7.4. An app may be able to access sensitive user data.

  • CVE-2022-32897Jun 10, 2024
    risk 0.00cvss epss 0.00

    A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Monterey 12.5. Processing a maliciously crafted tiff file may lead to arbitrary code execution.

  • CVE-2022-26691MedMay 26, 2022
    risk 0.00cvss 6.7epss 0.01

    A logic issue was addressed with improved state management. This issue is fixed in Security Update 2022-003 Catalina, macOS Monterey 12.3, macOS Big Sur 11.6.5. An application may be able to gain elevated privileges.

  • CVE-2004-1085Dec 2, 2004
    risk 0.00cvss epss 0.00

    Human Interface Toolbox (HIToolBox) for Apple Mac 0S X 10.3.6 allows local users to exit applications via the force-quit key combination, even when the system is running in kiosk mode.

  • CVE-2003-0518Aug 18, 2003
    risk 0.00cvss epss 0.00

    The screen saver in MacOS X allows users with physical access to cause the screen saver to crash and gain access to the underlying session via a large number of characters in the password field, possibly triggering a buffer overflow.

  • CVE-2001-0806Dec 6, 2001
    risk 0.00cvss epss 0.00

    Apple MacOS X 10.0 and 10.1 allow a local user to read and write to a user's desktop folder via insecure default permissions for the Desktop when it is created in some languages.

  • CVE-2001-0102Feb 12, 2001
    risk 0.00cvss epss 0.01

    "Multiple Users" Control Panel in Mac OS 9 allows Normal users to gain Owner privileges by removing the Users & Groups Data File, which effectively removes the Owner password and allows the Normal user to log in as the Owner account without a password.

  • CVE-1999-0590Jun 1, 2000
    risk 0.00cvss epss 0.06

    A system does not present an appropriate legal message or warning to a user who is accessing it.

Page 166 of 167