OS X

CVEs (392)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2016-1850	Apple Inc. Mac Os X	Hig	0.51	7.8	0.01	May 20, 2016	SceneKit in Apple OS X before 10.11.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file.
CVE-2016-1840	Debian Debian Linux	Hig	0.51	7.8	0.02	May 20, 2016	Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2016-1834	Debian Debian Linux	Hig	0.51	7.8	0.02	May 20, 2016	Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)…
CVE-2016-1830	Apple Inc. Mac Os X	Hig	0.51	7.8	0.00	May 20, 2016	The kernel in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than…
CVE-2016-1829	Apple Inc. Mac Os X	Hig	0.51	7.8	0.01	May 20, 2016	The kernel in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than…
CVE-2016-1826	Apple Inc. Mac Os X	Hig	0.51	7.8	0.00	May 20, 2016	Integer overflow in the dtrace implementation in the kernel in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2016-1820	Apple Inc. Mac Os X	Hig	0.51	7.8	0.00	May 20, 2016	Buffer overflow in IOAudioFamily in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2016-1816	Apple Inc. Mac Os X	Hig	0.51	7.8	0.00	May 20, 2016	IOAcceleratorFamily in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app.
CVE-2016-1815	Apple Inc. Mac Os X	Hig	0.51	7.8	0.00	May 20, 2016	IOAcceleratorFamily in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-1812	Apple Inc. Mac Os X	Hig	0.51	7.8	0.00	May 20, 2016	Buffer overflow in Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2016-1810	Apple Inc. Mac Os X	Hig	0.51	7.8	0.00	May 20, 2016	The Graphics Drivers subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-1808	Apple Inc. Mac Os X	Hig	0.51	7.8	0.00	May 20, 2016	The Disk Images subsystem in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-1806	Apple Inc. Mac Os X	Hig	0.51	7.8	0.00	May 20, 2016	Crash Reporter in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2016-1805	Apple Inc. Mac Os X	Hig	0.51	7.8	0.00	May 20, 2016	CoreStorage in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2016-1804	Apple Inc. Mac Os X	Hig	0.51	7.8	0.00	May 20, 2016	The Multi-Touch subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-1799	Apple Inc. Mac Os X	Hig	0.51	7.8	0.00	May 20, 2016	Audio in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-1797	Apple Inc. Mac Os X	Hig	0.51	7.8	0.00	May 20, 2016	Apple Type Services (ATS) in Apple OS X before 10.11.5 allows attackers to bypass intended FontValidator sandbox-policy restrictions and execute arbitrary code in a privileged context via a crafted app.
CVE-2016-1795	Apple Inc. Mac Os X	Hig	0.51	7.8	0.00	May 20, 2016	AppleGraphicsPowerManagement in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-1792	Apple Inc. Mac Os X	Hig	0.51	7.8	0.00	May 20, 2016	The AMD subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-1775	Apple Inc. Mac Os X	Hig	0.51	7.8	0.01	Mar 24, 2016	TrueTypeScaler in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file.

CVE-2016-1850HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.01
SceneKit in Apple OS X before 10.11.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file.
CVE-2016-1840HigMay 20, 2016
Debian
Debian Linux
risk 0.51cvss 7.8epss 0.02
Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory…
CVE-2016-1834HigMay 20, 2016
Debian
Debian Linux
risk 0.51cvss 7.8epss 0.02
Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)…
CVE-2016-1830HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.00
The kernel in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than…
CVE-2016-1829HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.01
The kernel in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than…
CVE-2016-1826HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.00
Integer overflow in the dtrace implementation in the kernel in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2016-1820HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.00
Buffer overflow in IOAudioFamily in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2016-1816HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.00
IOAcceleratorFamily in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app.
CVE-2016-1815HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.00
IOAcceleratorFamily in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-1812HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.00
Buffer overflow in Intel Graphics Driver in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2016-1810HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.00
The Graphics Drivers subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-1808HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.00
The Disk Images subsystem in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-1806HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.00
Crash Reporter in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2016-1805HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.00
CoreStorage in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2016-1804HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.00
The Multi-Touch subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-1799HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.00
Audio in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-1797HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.00
Apple Type Services (ATS) in Apple OS X before 10.11.5 allows attackers to bypass intended FontValidator sandbox-policy restrictions and execute arbitrary code in a privileged context via a crafted app.
CVE-2016-1795HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.00
AppleGraphicsPowerManagement in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-1792HigMay 20, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.00
The AMD subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-1775HigMar 24, 2016
Apple Inc.
Mac Os X
risk 0.51cvss 7.8epss 0.01
TrueTypeScaler in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file.

Page 4 of 20