VYPR

macOS High Sierra

by Apple Inc.

CVEs (58)

  • CVE-2017-13872HigNov 29, 2017
    risk 0.59cvss 8.1epss 0.37

    An issue was discovered in certain Apple products. macOS High Sierra before Security Update 2017-001 is affected. The issue involves the "Directory Utility" component. It allows attackers to obtain administrator access without a password via certain interactions involving entry…

  • CVE-2018-4404Jan 11, 2019
    risk 0.09cvss epss 0.14

    In iOS before 11.4 and macOS High Sierra before 10.13.5, a memory corruption issue exists and was addressed with improved memory handling.

  • CVE-2018-4280Apr 3, 2019
    risk 0.01cvss epss 0.02

    A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 11.4.1, macOS High Sierra 10.13.6, tvOS 11.4.1, watchOS 4.3.2.

  • CVE-2017-13908Dec 23, 2021
    risk 0.00cvss epss 0.00

    An issue in handling file permissions was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan, macOS High Sierra 10.13. A local attacker may be able to execute…

  • CVE-2018-4302Dec 23, 2021
    risk 0.00cvss epss 0.01

    A null pointer dereference was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13, iCloud for Windows 7.0, watchOS 4, iOS 11, iTunes 12.7 for Windows. Processing maliciously crafted XML may lead to an unexpected application termination or…

  • CVE-2017-13910Dec 23, 2021
    risk 0.00cvss epss 0.00

    An access issue was addressed with additional sandbox restrictions on applications. This issue is fixed in macOS High Sierra 10.13. An application may be able to access restricted files.

  • CVE-2018-4478Dec 23, 2021
    risk 0.00cvss epss 0.00

    A validation issue was addressed with improved logic. This issue is fixed in macOS High Sierra 10.13.5, Security Update 2018-003 Sierra, Security Update 2018-003 El Capitan. An attacker with physical access to a device may be able to elevate privileges.

  • CVE-2017-13909Dec 23, 2021
    risk 0.00cvss epss 0.00

    An issue existed in the storage of sensitive tokens. This issue was addressed by placing the tokens in Keychain. This issue is fixed in macOS High Sierra 10.13. A local attacker may gain access to iCloud authentication tokens.

  • CVE-2017-13907Dec 23, 2021
    risk 0.00cvss epss 0.00

    A state management issue was addressed with improved state validation. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan. The screen lock may unexpectedly remain unlocked.

  • CVE-2017-13892Dec 23, 2021
    risk 0.00cvss epss 0.01

    An issue existed in the handling of Contact sharing. This issue was addressed with improved handling of user information. This issue is fixed in macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan. Sharing contact information may…

  • CVE-2017-13835Dec 23, 2021
    risk 0.00cvss epss 0.01

    A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS High Sierra 10.13. An application may be able to execute arbitrary code with elevated privileges.

  • CVE-2017-13905Dec 23, 2021
    risk 0.00cvss epss 0.01

    A race condition was addressed with additional validation. This issue is fixed in tvOS 11.2, iOS 11.2, macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan, watchOS 4.2. An application may be able to gain elevated privileges.

  • CVE-2020-9961Oct 27, 2020
    risk 0.00cvss epss 0.02

    An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.7, Security Update 2020-005 High Sierra, Security Update 2020-005 Mojave. Processing a maliciously crafted image may lead to arbitrary code execution.

  • CVE-2020-3855Oct 27, 2020
    risk 0.00cvss epss 0.01

    An access issue was addressed with improved access restrictions. This issue is fixed in macOS Catalina 10.15.3, Security Update 2020-001 Mojave, Security Update 2020-001 High Sierra. A malicious application may be able to overwrite arbitrary files.

  • CVE-2019-8645Oct 27, 2020
    risk 0.00cvss epss 0.01

    An issue existed in the handling of encrypted Mail. This issue was addressed with improved isolation of MIME in Mail. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. An attacker in a privileged network position…

  • CVE-2019-8675Oct 27, 2020
    risk 0.00cvss epss 0.02

    A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. An attacker in a privileged network position may be able to execute arbitrary code.

  • CVE-2019-8642Oct 27, 2020
    risk 0.00cvss epss 0.00

    An issue existed in the handling of S-MIME certificates. This issue was addressed with improved validation of S-MIME certificates. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. Processing a maliciously crafted…

  • CVE-2019-8612Oct 27, 2020
    risk 0.00cvss epss 0.01

    A logic issue was addressed with improved state management. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra, tvOS 12.3, watchOS 5.2.1, macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update…

  • CVE-2019-8640Oct 27, 2020
    risk 0.00cvss epss 0.01

    A logic issue was addressed with improved validation. This issue is fixed in macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra. A sandboxed process may be able to circumvent sandbox restrictions.

  • CVE-2019-8547Oct 27, 2020
    risk 0.00cvss epss 0.02

    An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra, watchOS 5.2, macOS Mojave…

Page 1 of 3