VYPR

OS X

by Apple Inc.

CVEs (533)

  • CVE-2015-3672Jul 3, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.00

    Admin Framework in Apple OS X before 10.10.4 does not properly handle authentication errors, which allows local users to obtain admin privileges via unspecified vectors.

  • CVE-2015-3671Jul 3, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.00

    Admin Framework in Apple OS X before 10.10.4 does not properly verify XPC entitlements, which allows local users to bypass authentication and obtain admin privileges via unspecified vectors.

  • CVE-2015-3663Jul 3, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.03

    QT Media Foundation in Apple QuickTime before 7.7.7, as used in OS X before 10.10.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, a different vulnerability than CVE-2015-3661,…

  • CVE-2015-3662Jul 3, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.03

    QT Media Foundation in Apple QuickTime before 7.7.7, as used in OS X before 10.10.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, a different vulnerability than CVE-2015-3661,…

  • CVE-2015-1148Apr 10, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.00

    Screen Sharing in Apple OS X before 10.10.3 stores the password of a user in a log file, which might allow context-dependent attackers to obtain sensitive information by reading this file.

  • CVE-2015-1147Apr 10, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.00

    Open Directory Client in Apple OS X before 10.10.3 sends unencrypted password-change requests in certain circumstances involving missing certificates, which allows remote attackers to obtain sensitive information by sniffing the network.

  • CVE-2015-1146Apr 10, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.00

    The Code Signing implementation in Apple OS X before 10.10.3 does not properly validate signatures, which allows local users to bypass intended access restrictions via a crafted bundle, a different vulnerability than CVE-2015-1145.

  • CVE-2015-1145Apr 10, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.00

    The Code Signing implementation in Apple OS X before 10.10.3 does not properly validate signatures, which allows local users to bypass intended access restrictions via a crafted bundle, a different vulnerability than CVE-2015-1146.

  • CVE-2015-1144Apr 10, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.00

    Buffer overflow in the UniformTypeIdentifiers component in Apple OS X before 10.10.3 allows local users to gain privileges via a crafted Uniform Type Identifier.

  • CVE-2015-1143Apr 10, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.00

    LaunchServices in Apple OS X before 10.10.3 allows local users to gain privileges via a crafted localized string, related to a "type confusion" issue.

  • CVE-2015-1142Apr 10, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.00

    LaunchServices in Apple OS X before 10.10.3 allows local users to cause a denial of service (Finder crash) via crafted localization data.

  • CVE-2015-1141Apr 10, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.00

    The mach_vm_read functionality in the kernel in Apple OS X before 10.10.3 allows local users to cause a denial of service (system crash) via unspecified vectors.

  • CVE-2015-1140Apr 10, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.03

    Buffer overflow in IOHIDFamily in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors.

  • CVE-2015-1139Apr 10, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.02

    ImageIO in Apple OS X before 10.10.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted .sgi file.

  • CVE-2015-1138Apr 10, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.00

    Hypervisor in Apple OS X before 10.10.3 allows local users to cause a denial of service via unspecified vectors.

  • CVE-2015-1137Apr 10, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.00

    The NVIDIA graphics driver in Apple OS X before 10.10.3 allows local users to gain privileges or cause a denial of service (NULL pointer dereference) via an unspecified IOService userclient type.

  • CVE-2015-1136Apr 10, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.02

    Use-after-free vulnerability in CoreAnimation in Apple OS X before 10.10.3 allows remote attackers to execute arbitrary code by leveraging improper use of a mutex.

  • CVE-2015-1135Apr 10, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.00

    fontd in Apple Type Services (ATS) in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-1131, CVE-2015-1132, CVE-2015-1133, and CVE-2015-1134.

  • CVE-2015-1134Apr 10, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.00

    fontd in Apple Type Services (ATS) in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-1131, CVE-2015-1132, CVE-2015-1133, and CVE-2015-1135.

  • CVE-2015-1133Apr 10, 2015
    Apple Inc.
    Mac Os X
    risk 0.00cvss epss 0.00

    fontd in Apple Type Services (ATS) in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-1131, CVE-2015-1132, CVE-2015-1134, and CVE-2015-1135.

Page 21 of 27