Mac Os X CVEs and Security Vulnerabilities

Filtered by vendor Apple Subscriptions

Filtered by product Mac Os X Subscriptions

Search

Switch to Advanced Search (Beta)

Total 5568 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2016-4638	1 Apple	1 Mac Os X	2025-04-12	N/A
Login Window in Apple OS X before 10.11.6 allows attackers to gain privileges via a crafted app that leverages a "type confusion."
CVE-2016-4645	1 Apple	1 Mac Os X	2025-04-12	N/A
CFNetwork in Apple OS X before 10.11.6 uses weak permissions for web-browser cookies, which allows local users to obtain sensitive information via unspecified vectors.
CVE-2016-4646	1 Apple	1 Mac Os X	2025-04-12	N/A
Audio in Apple OS X before 10.11.6 mishandles a size value, which allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read) via a crafted audio file.
CVE-2016-4647	1 Apple	1 Mac Os X	2025-04-12	N/A
Audio in Apple OS X before 10.11.6 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted file.
CVE-2016-4648	1 Apple	1 Mac Os X	2025-04-12	N/A
Audio in Apple OS X before 10.11.6 allows local users to obtain sensitive kernel memory-layout information or cause a denial of service (out-of-bounds read) via unspecified vectors.
CVE-2016-4652	1 Apple	1 Mac Os X	2025-04-12	N/A
CoreGraphics in Apple OS X before 10.11.6 allows local users to obtain sensitive information from kernel memory and consequently gain privileges, or cause a denial of service (out-of-bounds read), via unspecified vectors.
CVE-2016-4653	1 Apple	4 Iphone Os, Mac Os X, Tvos and 1 more	2025-04-12	N/A
The kernel in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2016-1863 and CVE-2016-4582.
CVE-2014-4489	1 Apple	3 Iphone Os, Mac Os X, Tvos	2025-04-12	N/A
IOHIDFamily in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 does not properly initialize event queues, which allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via a crafted app.
CVE-2016-4709	1 Apple	1 Mac Os X	2025-04-12	N/A
WindowServer in Apple OS X before 10.12 allows local users to obtain root access via vectors that leverage "type confusion," a different vulnerability than CVE-2016-4710.
CVE-2014-4487	1 Apple	3 Iphone Os, Mac Os X, Tvos	2025-04-12	N/A
Buffer overflow in IOHIDFamily in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2014-4486	1 Apple	3 Iphone Os, Mac Os X, Tvos	2025-04-12	N/A
IOAcceleratorFamily in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 does not properly handle resource lists and IOService userclient types, which allows attackers to execute arbitrary code or cause a denial of service (NULL pointer dereference) via a crafted app.
CVE-2014-4485	1 Apple	3 Iphone Os, Mac Os X, Tvos	2025-04-12	N/A
Buffer overflow in the XML parser in Foundation in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted XML document.
CVE-2016-4697	1 Apple	1 Mac Os X	2025-04-12	N/A
Apple HSSPI Support in Apple OS X before 10.12 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-4698	1 Apple	2 Iphone Os, Mac Os X	2025-04-12	N/A
AppleMobileFileIntegrity in Apple iOS before 10 and OS X before 10.12 mishandles process entitlement and Team ID values in the task port inheritance policy, which allows attackers to execute arbitrary code in a privileged context via a crafted app.
CVE-2016-4700	1 Apple	1 Mac Os X	2025-04-12	N/A
AppleUUC in Apple OS X before 10.12 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-4699.
CVE-2016-4701	1 Apple	1 Mac Os X	2025-04-12	N/A
Application Firewall in Apple OS X before 10.12 allows local users to cause a denial of service via vectors involving a crafted SO_EXECPATH environment variable.
CVE-2016-4703	1 Apple	1 Mac Os X	2025-04-12	N/A
Bluetooth in Apple OS X before 10.12 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2016-4706	1 Apple	1 Mac Os X	2025-04-12	N/A
cd9660 in Apple OS X before 10.12 allows local users to cause a denial of service via unspecified vectors.
CVE-2016-4702	1 Apple	4 Iphone Os, Mac Os X, Tvos and 1 more	2025-04-12	N/A
Audio in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
CVE-2016-6992	6 Adobe, Apple, Google and 3 more	9 Flash Player, Flash Player Desktop Runtime, Mac Os X and 6 more	2025-04-12	8.8 High
Adobe Flash Player before 18.0.0.382 and 19.x through 23.x before 23.0.0.185 on Windows and OS X and before 11.2.202.637 on Linux allows attackers to execute arbitrary code by leveraging an unspecified "type confusion."

« first previous Page 86 of 279. next last »