OS X

CVEs (545)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2016-1798	Apple Inc. Mac Os X	Low	0.21	3.3	0.00	May 20, 2016	Audio in Apple OS X before 10.11.5 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted app.
CVE-2016-1796	Apple Inc. Mac Os X	Low	0.21	3.3	0.00	May 20, 2016	Apple Type Services (ATS) in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information or cause a denial of service (out-of-bounds memory access) via a crafted app.
CVE-2016-1791	Apple Inc. Mac Os X	Low	0.21	3.3	0.00	May 20, 2016	The AMD subsystem in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app.
CVE-2016-1773	Apple Inc. Mac Os X	Low	0.21	3.3	0.00	Mar 24, 2016	The code-signing subsystem in Apple OS X before 10.11.4 does not properly verify file ownership, which allows local users to determine the existence of arbitrary files via unspecified vectors.
CVE-2015-7007	Apple Inc. Mac Os X		0.09	—	0.78	Oct 23, 2015	Script Editor in Apple OS X before 10.11.1 allows remote attackers to bypass an intended user-confirmation requirement for AppleScript execution via unspecified vectors.
CVE-2015-3704	Apple Inc. Mac Os X		0.06	—	0.41	Jul 3, 2015	runner in Install.framework in the Install Framework Legacy subsystem in Apple OS X before 10.10.4 does not properly drop privileges, which allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2014-8835	Apple Inc. Mac Os X		0.06	—	0.35	Jan 30, 2015	The xpc_data_get_bytes function in libxpc in Apple OS X before 10.10.2 does not verify that a dictionary's Attributes key has the xpc_data data type, which allows attackers to execute arbitrary code by providing a crafted dictionary to sysmond, related to an "XPC type confusion"…
CVE-2015-7112	Apple Inc. Mac Os X		0.05	—	0.20	Dec 11, 2015	The IOHIDFamily API in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than…
CVE-2015-7039	Apple Inc. Mac Os X		0.05	—	0.27	Dec 11, 2015	Buffer overflow in libc in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code via a crafted package, a different vulnerability than CVE-2015-7038.
CVE-2015-5784	Apple Inc. Mac Os X		0.05	—	0.27	Aug 17, 2015	runner in Install.framework in the Install Framework Legacy component in Apple OS X before 10.10.5 does not properly drop privileges, which allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2015-5754	Apple Inc. Mac Os X		0.05	—	0.27	Aug 17, 2015	Race condition in runner in Install.framework in the Install Framework Legacy component in Apple OS X before 10.10.5 allows attackers to execute arbitrary code in a privileged context via a crafted app that leverages incorrect privilege dropping associated with a locking error.
CVE-2015-3798	Apple Inc. Mac Os X		0.05	—	0.26	Aug 17, 2015	The TRE library in Libc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows context-dependent attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted regular expression, a different vulnerability than…
CVE-2015-3693	Apple Inc. Mac Os X		0.05	—	0.31	Jul 3, 2015	Apple Mac EFI before 2015-001, as used in OS X before 10.10.4 and other products, does not properly set refresh rates for DDR3 RAM, which might make it easier for remote attackers to conduct row-hammer attacks, and consequently gain privileges or cause a denial of service…
CVE-2014-4492	Apple Inc. Mac Os X		0.05	—	0.22	Jan 30, 2015	libnetcore in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 does not verify that certain values have the expected data type, which allows attackers to execute arbitrary code in an _networkd context via a crafted XPC message from a sandboxed app, as…
CVE-2015-6996	Apple Inc. Mac Os X		0.04	—	0.07	Oct 23, 2015	IOAcceleratorFamily in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted app.
CVE-2015-6995	Apple Inc. Mac Os X		0.04	—	0.12	Oct 23, 2015	The Disk Images component in Apple iOS before 9.1 and OS X before 10.11.1 misparses images, which allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted app.
CVE-2015-3796	Apple Inc. Mac Os X		0.04	—	0.18	Aug 17, 2015	The TRE library in Libc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows context-dependent attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted regular expression, a different vulnerability than…
CVE-2015-3783	Apple Inc. Mac Os X		0.04	—	0.18	Aug 16, 2015	SceneKit in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.
CVE-2014-8826	Apple Inc. Mac Os X		0.04	—	0.14	Jan 30, 2015	LaunchServices in Apple OS X before 10.10.2 does not properly handle file-type metadata, which allows attackers to bypass the Gatekeeper protection mechanism via a crafted JAR archive.
CVE-2015-7110	Apple Inc. Mac Os X		0.03	—	0.00	Dec 11, 2015	The Disk Images component in Apple OS X before 10.11.2 and tvOS before 9.1 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted disk image.

CVE-2016-1798LowMay 20, 2016
Apple Inc.
Mac Os X
risk 0.21cvss 3.3epss 0.00
Audio in Apple OS X before 10.11.5 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted app.
CVE-2016-1796LowMay 20, 2016
Apple Inc.
Mac Os X
risk 0.21cvss 3.3epss 0.00
Apple Type Services (ATS) in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information or cause a denial of service (out-of-bounds memory access) via a crafted app.
CVE-2016-1791LowMay 20, 2016
Apple Inc.
Mac Os X
risk 0.21cvss 3.3epss 0.00
The AMD subsystem in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app.
CVE-2016-1773LowMar 24, 2016
Apple Inc.
Mac Os X
risk 0.21cvss 3.3epss 0.00
The code-signing subsystem in Apple OS X before 10.11.4 does not properly verify file ownership, which allows local users to determine the existence of arbitrary files via unspecified vectors.
CVE-2015-7007Oct 23, 2015
Apple Inc.
Mac Os X
risk 0.09cvss —epss 0.78
Script Editor in Apple OS X before 10.11.1 allows remote attackers to bypass an intended user-confirmation requirement for AppleScript execution via unspecified vectors.
CVE-2015-3704Jul 3, 2015
Apple Inc.
Mac Os X
risk 0.06cvss —epss 0.41
runner in Install.framework in the Install Framework Legacy subsystem in Apple OS X before 10.10.4 does not properly drop privileges, which allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2014-8835Jan 30, 2015
Apple Inc.
Mac Os X
risk 0.06cvss —epss 0.35
The xpc_data_get_bytes function in libxpc in Apple OS X before 10.10.2 does not verify that a dictionary's Attributes key has the xpc_data data type, which allows attackers to execute arbitrary code by providing a crafted dictionary to sysmond, related to an "XPC type confusion"…
CVE-2015-7112Dec 11, 2015
Apple Inc.
Mac Os X
risk 0.05cvss —epss 0.20
The IOHIDFamily API in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than…
CVE-2015-7039Dec 11, 2015
Apple Inc.
Mac Os X
risk 0.05cvss —epss 0.27
Buffer overflow in libc in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code via a crafted package, a different vulnerability than CVE-2015-7038.
CVE-2015-5784Aug 17, 2015
Apple Inc.
Mac Os X
risk 0.05cvss —epss 0.27
runner in Install.framework in the Install Framework Legacy component in Apple OS X before 10.10.5 does not properly drop privileges, which allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2015-5754Aug 17, 2015
Apple Inc.
Mac Os X
risk 0.05cvss —epss 0.27
Race condition in runner in Install.framework in the Install Framework Legacy component in Apple OS X before 10.10.5 allows attackers to execute arbitrary code in a privileged context via a crafted app that leverages incorrect privilege dropping associated with a locking error.
CVE-2015-3798Aug 17, 2015
Apple Inc.
Mac Os X
risk 0.05cvss —epss 0.26
The TRE library in Libc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows context-dependent attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted regular expression, a different vulnerability than…
CVE-2015-3693Jul 3, 2015
Apple Inc.
Mac Os X
risk 0.05cvss —epss 0.31
Apple Mac EFI before 2015-001, as used in OS X before 10.10.4 and other products, does not properly set refresh rates for DDR3 RAM, which might make it easier for remote attackers to conduct row-hammer attacks, and consequently gain privileges or cause a denial of service…
CVE-2014-4492Jan 30, 2015
Apple Inc.
Mac Os X
risk 0.05cvss —epss 0.22
libnetcore in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 does not verify that certain values have the expected data type, which allows attackers to execute arbitrary code in an _networkd context via a crafted XPC message from a sandboxed app, as…
CVE-2015-6996Oct 23, 2015
Apple Inc.
Mac Os X
risk 0.04cvss —epss 0.07
IOAcceleratorFamily in Apple iOS before 9.1, OS X before 10.11.1, and watchOS before 2.0.1 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted app.
CVE-2015-6995Oct 23, 2015
Apple Inc.
Mac Os X
risk 0.04cvss —epss 0.12
The Disk Images component in Apple iOS before 9.1 and OS X before 10.11.1 misparses images, which allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted app.
CVE-2015-3796Aug 17, 2015
Apple Inc.
Mac Os X
risk 0.04cvss —epss 0.18
The TRE library in Libc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows context-dependent attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted regular expression, a different vulnerability than…
CVE-2015-3783Aug 16, 2015
Apple Inc.
Mac Os X
risk 0.04cvss —epss 0.18
SceneKit in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.
CVE-2014-8826Jan 30, 2015
Apple Inc.
Mac Os X
risk 0.04cvss —epss 0.14
LaunchServices in Apple OS X before 10.10.2 does not properly handle file-type metadata, which allows attackers to bypass the Gatekeeper protection mechanism via a crafted JAR archive.
CVE-2015-7110Dec 11, 2015
Apple Inc.
Mac Os X
risk 0.03cvss —epss 0.00
The Disk Images component in Apple OS X before 10.11.2 and tvOS before 9.1 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted disk image.

Page 9 of 28