Mac Os X

mac_os_x

Vendor: Apple • 3,210 CVEs

CVEs (3,210)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-4217 1Apple 1Mac Os X Nov 21, 2024 Jan 11, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In macOS High Sierra before 10.13.5, a privacy issue in the handling of Open Directory records was addressed with improved indexing.
CVE-2018-4194 1Apple 5Icloud Iphone OsItunes+2 more Nov 21, 2024 Jan 11, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 In iOS before 11.4, iCloud for Windows before 7.5, watchOS before 4.3.1, iTunes before 12.7.5 for Windows, and macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation.
CVE-2018-4189 1Apple 4Apple Tv Iphone OsMac Os X+1 more Nov 21, 2024 Jan 11, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 In iOS before 11.2.5, macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, watchOS before 4.2.2, and tvOS before 11.2.5, a memory corruption issue exists and was add...Show more In iOS before 11.2.5, macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, watchOS before 4.2.2, and tvOS before 11.2.5, a memory corruption issue exists and was addressed with improved memory handling.Show less
CVE-2018-4185 1Apple 4Iphone Os Mac Os XTvos+1 more Nov 21, 2024 Jan 11, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS before High Sierra 10.13.4, an information disclosure issue existed in the transition of program state. This issue was addressed with improved state han...Show more In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS before High Sierra 10.13.4, an information disclosure issue existed in the transition of program state. This issue was addressed with improved state handling.Show less
CVE-2018-4183 1Apple 1Mac Os X Nov 21, 2024 Jan 11, 2019 N/A· v4 8.2 HIGH· v3 7.2 HIGH· v2 In macOS High Sierra before 10.13.5, an access issue was addressed with additional sandbox restrictions.
CVE-2018-4182 1Apple 1Mac Os X Nov 21, 2024 Jan 11, 2019 N/A· v4 8.2 HIGH· v3 7.2 HIGH· v2 In macOS High Sierra before 10.13.5, an access issue was addressed with additional sandbox restrictions on CUPS.
CVE-2018-4181 3Apple CanonicalDebian 3Debian Linux Mac Os XUbuntu Linux Nov 21, 2024 Jan 11, 2019 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 In macOS High Sierra before 10.13.5, an issue existed in CUPS. This issue was addressed with improved access restrictions.
CVE-2018-4180 3Apple CanonicalDebian 3Debian Linux Mac Os XUbuntu Linux Nov 21, 2024 Jan 11, 2019 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 In macOS High Sierra before 10.13.5, an issue existed in CUPS. This issue was addressed with improved access restrictions.
CVE-2018-4179 1Apple 1Mac Os X Nov 21, 2024 Jan 11, 2019 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 In macOS High Sierra before 10.13.4, there was an issue with the handling of smartcard PINs. This issue was addressed with additional logic.
CVE-2018-4169 1Apple 1Mac Os X Nov 21, 2024 Jan 11, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, an out-of-bounds read was addressed with improved input validation.
CVE-2017-13889 1Apple 1Mac Os X Nov 21, 2024 Jan 11, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, a logic error existed in the validation of credentials. This was addressed with improved credential validatio...Show more In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, a logic error existed in the validation of credentials. This was addressed with improved credential validation.Show less
CVE-2017-13887 1Apple 1Mac Os X Nov 21, 2024 Jan 11, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In macOS High Sierra before 10.13.2, a logic issue existed in APFS when deleting keys during hibernation. This was addressed with improved state management.
CVE-2017-13886 1Apple 1Mac Os X Nov 21, 2024 Jan 11, 2019 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 In macOS High Sierra before 10.13.2, an access issue existed with privileged WiFi system configuration. This issue was addressed with additional restrictions.
CVE-2018-18313 6Apple CanonicalDebian+3 more 9Debian Linux E Series Santricity Os ControllerEnterprise Linux+6 more Nov 21, 2024 Dec 7, 2018 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 Perl before 5.26.3 has a buffer over-read via a crafted regular expression that triggers disclosure of sensitive information from process memory.
CVE-2018-18311 8Apple CanonicalDebian+5 more 18Debian Linux E Series Santricity Os ControllerEnterprise Linux+15 more Nov 21, 2024 Dec 7, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations.
CVE-2018-5383 3Apple GoogleTi 4Android Iphone OsMac Os X+1 more Mar 5, 2026 Aug 7, 2018 N/A· v4 6.8 MEDIUM· v3 4.3 MEDIUM· v2 Bluetooth firmware or operating system software drivers in macOS versions before 10.13, High Sierra and iOS versions before 11.4, and Android versions before the 2018-06-05 patch may not sufficiently validate elliptic cu...Show more Bluetooth firmware or operating system software drivers in macOS versions before 10.13, High Sierra and iOS versions before 11.4, and Android versions before the 2018-06-05 patch may not sufficiently validate elliptic curve parameters used to generate public keys during a Diffie-Hellman key exchange, which may allow a remote attacker to obtain the encryption key used by the device.Show less
CVE-2018-4253 1Apple 1Mac Os X Nov 21, 2024 Jun 8, 2018 N/A· v4 5.5 MEDIUM· v3 7.1 HIGH· v2 An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "AMD" component. It allows local users to bypass intended memory-read restrictions or cause a denial of service...Show more An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "AMD" component. It allows local users to bypass intended memory-read restrictions or cause a denial of service (out-of-bounds read of kernel memory) via a crafted app.Show less
CVE-2018-4251 1Apple 1Mac Os X Nov 21, 2024 Jun 8, 2018 N/A· v4 5.5 MEDIUM· v3 7.1 HIGH· v2 An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "Firmware" component. It allows attackers to modify the EFI flash-memory region that a crafted app that has root...Show more An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "Firmware" component. It allows attackers to modify the EFI flash-memory region that a crafted app that has root access.Show less
CVE-2018-4249 1Apple 4Apple Tv Iphone OsMac Os X+1 more Nov 21, 2024 Jun 8, 2018 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10.13.5 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves pktmnglr_ipfilter_input...Show more An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10.13.5 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves pktmnglr_ipfilter_input in com.apple.packet-mangler in the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (integer overflow and stack-based buffer overflow) via a crafted app.Show less
CVE-2018-4243 1Apple 4Apple Tv Iphone OsMac Os X+1 more Nov 21, 2024 Jun 8, 2018 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10.13.5 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "Kernel" component....Show more An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10.13.5 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "Kernel" component. A buffer overflow in getvolattrlist allows attackers to execute arbitrary code in a privileged context via a crafted app.Show less

Previous 1...525354...161 Next