VYPR

OS X

by Apple Inc.

CVEs (550)

  • CVE-2015-7108Dec 11, 2015
    Apple Inc.
    OS X
    risk 0.03cvss epss 0.01

    The Bluetooth HCI interface in Apple OS X before 10.11.2 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.

  • CVE-2015-7106Dec 11, 2015
    Apple Inc.
    OS X
    risk 0.03cvss epss 0.00

    The Intel Graphics Driver component in Apple OS X before 10.11.2 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.

  • CVE-2015-7084Dec 11, 2015
    Apple Inc.
    tvOS
    risk 0.03cvss epss 0.00

    The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-7083.

  • CVE-2015-7083Dec 11, 2015
    Apple Inc.
    tvOS
    risk 0.03cvss epss 0.00

    The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-7084.

  • CVE-2015-7078Dec 11, 2015
    Apple Inc.
    OS X
    risk 0.03cvss epss 0.00

    Use-after-free vulnerability in Hypervisor in Apple OS X before 10.11.2 allows local users to gain privileges via vectors involving VM objects.

  • CVE-2015-7077Dec 11, 2015
    Apple Inc.
    OS X
    risk 0.03cvss epss 0.00

    The Intel Graphics Driver component in Apple OS X before 10.11.2 allows local users to gain privileges or cause a denial of service (out-of-bounds memory access) via unspecified vectors.

  • CVE-2015-7047Dec 11, 2015
    Apple Inc.
    tvOS
    risk 0.03cvss epss 0.01

    The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows local users to gain privileges via a crafted mach message that is misparsed.

  • CVE-2015-5889Oct 9, 2015
    Apple Inc.
    OS X
    risk 0.03cvss epss 0.05

    rsh in the remote_cmds component in Apple OS X before 10.11 allows local users to obtain root privileges via vectors involving environment variables.

  • CVE-2015-3760Aug 16, 2015
    Apple Inc.
    OS X
    risk 0.03cvss epss 0.03

    dyld in Apple OS X before 10.10.5 does not properly validate pathnames in the environment, which allows local users to gain privileges via unspecified vectors.

  • CVE-2015-3673Jul 3, 2015
    Apple Inc.
    OS X
    risk 0.03cvss epss 0.03

    Admin Framework in Apple OS X before 10.10.4 does not properly restrict the location of writeconfig clients, which allows local users to obtain root privileges by moving and then modifying Directory Utility.

  • CVE-2015-1100Apr 10, 2015
    Apple Inc.
    iOS
    risk 0.03cvss epss 0.01

    The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows attackers to cause a denial of service (out-of-bounds memory access) or obtain sensitive memory-content information via a crafted app.

  • CVE-2014-1322Apr 23, 2014
    Apple Inc.
    OS X
    risk 0.03cvss epss 0.00

    The kernel in Apple OS X through 10.9.2 places a kernel pointer into an XNU object data structure accessible from user space, which makes it easier for local users to bypass the ASLR protection mechanism by reading an unspecified attribute of the object.

  • CVE-2006-4866Sep 19, 2006
    Apple Inc.
    OS X
    risk 0.03cvss epss 0.00

    Buffer overflow in kextload in Apple OS X, as used by TDIXSupport in Roxio Toast Titanium and possibly other products, allows local users to execute arbitrary code via a long extension argument.

  • CVE-2015-7038Dec 11, 2015
    Apple Inc.
    tvOS
    risk 0.01cvss epss 0.06

    Buffer overflow in libc in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code via a crafted package, a different vulnerability than CVE-2015-7039.

  • CVE-2015-6988Oct 23, 2015
    Apple Inc.
    iOS
    risk 0.01cvss epss 0.11

    The kernel in Apple iOS before 9.1 and OS X before 10.11.1 does not initialize an unspecified data structure, which allows remote attackers to execute arbitrary code via vectors involving an unknown network-connectivity requirement.

  • CVE-2014-4481Jan 30, 2015
    Apple Inc.
    iOS
    risk 0.01cvss epss 0.09

    Integer overflow in CoreGraphics in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PDF document.

  • CVE-2014-8128Feb 12, 2020
    LibTIFF
    Libtiff
    risk 0.00cvss epss 0.01

    LibTIFF prior to 4.0.4, as used in Apple iOS before 8.4 and OS X before 10.10.4 and other products, allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image.

  • CVE-2015-7109Dec 11, 2015
    Apple Inc.
    tvOS
    risk 0.00cvss epss 0.01

    IOAcceleratorFamily in Apple OS X before 10.11.2 and tvOS before 9.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

  • CVE-2015-7105Dec 11, 2015
    Apple Inc.
    tvOS
    risk 0.00cvss epss 0.03

    CoreGraphics in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file.

  • CVE-2015-7094Dec 11, 2015
    Apple Inc.
    iOS
    risk 0.00cvss epss 0.00

    CFNetwork HTTPProtocol in Apple iOS before 9.2 and OS X before 10.11.2 allows man-in-the-middle attackers to bypass the HSTS protection mechanism via a crafted URL.

Page 10 of 28