Mac Os X

mac_os_x

Vendor: Apple • 3,210 CVEs

CVEs (3,210)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2015-5750 1Apple 1Mac Os X May 6, 2026 Aug 17, 2015 N/A· v4 N/A· v3 7.5 HIGH· v2 Data Detectors Engine in Apple OS X before 10.10.5 allows attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted series of Unicode characters.
CVE-2015-5748 1Apple 3Iphone Os Mac Os XSafari May 6, 2026 Aug 17, 2015 N/A· v4 N/A· v3 2.1 LOW· v2 The kernel in Apple OS X before 10.10.5 does not properly mount HFS volumes, which allows local users to cause a denial of service via a crafted volume.
CVE-2015-5747 1Apple 1Mac Os X May 6, 2026 Aug 17, 2015 N/A· v4 N/A· v3 4.9 MEDIUM· v2 The fasttrap driver in the kernel in Apple OS X before 10.10.5 allows local users to cause a denial of service (resource consumption) via unspecified vectors.
CVE-2015-3807 1Apple 3Iphone Os Mac Os XTvos May 6, 2026 Aug 17, 2015 N/A· v4 N/A· v3 4.3 MEDIUM· v2 libxml2 in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (memory corruption) via a crafted XML document.
CVE-2015-3806 1Apple 2Iphone Os Mac Os X May 6, 2026 Aug 17, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 Apple iOS before 8.4.1 and OS X before 10.10.5 allow local users to bypass a code-signing protection mechanism by appending code to a crafted executable file.
CVE-2015-3805 1Apple 2Iphone Os Mac Os X May 6, 2026 Aug 17, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 Apple iOS before 8.4.1 and OS X before 10.10.5 allow local users to bypass a code-signing protection mechanism via a crafted Mach-O file, a different vulnerability than CVE-2015-3802.
CVE-2015-3804 1Apple 2Iphone Os Mac Os X May 6, 2026 Aug 17, 2015 N/A· v4 N/A· v3 7.5 HIGH· v2 FontParser in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted font file, a different v...Show more FontParser in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted font file, a different vulnerability than CVE-2015-5756 and CVE-2015-5775.Show less
CVE-2015-3803 1Apple 2Iphone Os Mac Os X May 6, 2026 Aug 17, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 Apple iOS before 8.4.1 and OS X before 10.10.5 allow local users to bypass a code-signing protection mechanism via a crafted multi-architecture executable file.
CVE-2015-3802 1Apple 2Iphone Os Mac Os X May 6, 2026 Aug 17, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 Apple iOS before 8.4.1 and OS X before 10.10.5 allow local users to bypass a code-signing protection mechanism via a crafted Mach-O file, a different vulnerability than CVE-2015-3805.
CVE-2015-3800 1Apple 2Iphone Os Mac Os X May 6, 2026 Aug 17, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 The DiskImages component in Apple iOS before 8.4.1 and OS X before 10.10.5 allows local users to gain privileges or cause a denial of service (memory corruption and application crash) via a malformed DMG image.
CVE-2015-3799 1Apple 1Mac Os X May 6, 2026 Aug 17, 2015 N/A· v4 N/A· v3 9.3 HIGH· v2 The Apple ID OD plug-in in Apple OS X before 10.10.5 allows attackers to change arbitrary user passwords via a crafted app.
CVE-2015-3798 1Apple 2Iphone Os Mac Os X May 6, 2026 Aug 17, 2015 N/A· v4 N/A· v3 7.5 HIGH· v2 The TRE library in Libc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows context-dependent attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted...Show more The TRE library in Libc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows context-dependent attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted regular expression, a different vulnerability than CVE-2015-3796 and CVE-2015-3797.Show less
CVE-2015-3797 1Apple 2Iphone Os Mac Os X May 6, 2026 Aug 17, 2015 N/A· v4 N/A· v3 7.5 HIGH· v2 The TRE library in Libc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows context-dependent attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted...Show more The TRE library in Libc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows context-dependent attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted regular expression, a different vulnerability than CVE-2015-3796 and CVE-2015-3798.Show less
CVE-2015-3796 1Apple 2Iphone Os Mac Os X May 6, 2026 Aug 17, 2015 N/A· v4 N/A· v3 7.5 HIGH· v2 The TRE library in Libc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows context-dependent attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted...Show more The TRE library in Libc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows context-dependent attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted regular expression, a different vulnerability than CVE-2015-3797 and CVE-2015-3798.Show less
CVE-2015-3795 1Apple 2Iphone Os Mac Os X May 6, 2026 Aug 17, 2015 N/A· v4 N/A· v3 9.3 HIGH· v2 libxpc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app that sends a malformed XPC me...Show more libxpc in Apple iOS before 8.4.1 and OS X before 10.10.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app that sends a malformed XPC message.Show less
CVE-2015-3794 1Apple 1Mac Os X May 6, 2026 Aug 17, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The Speech UI in Apple OS X before 10.10.5, when speech alerts are enabled, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Unicode s...Show more The Speech UI in Apple OS X before 10.10.5, when speech alerts are enabled, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Unicode string.Show less
CVE-2015-3787 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 3.3 LOW· v2 The Bluetooth subsystem in Apple OS X before 10.10.5 allows remote attackers to cause a denial of service via malformed Bluetooth ACL packets.
CVE-2015-3786 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The Bluetooth subsystem in Apple OS X before 10.10.5 does not properly restrict Notification Center Service access, which allows attackers to read Notification Center notifications of certain paired devices via a crafted...Show more The Bluetooth subsystem in Apple OS X before 10.10.5 does not properly restrict Notification Center Service access, which allows attackers to read Notification Center notifications of certain paired devices via a crafted app.Show less
CVE-2015-3784 1Apple 6Iphone Os IworkKeynote+3 more May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Office Viewer in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, relat...Show more Office Viewer in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.Show less
CVE-2015-3783 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 7.5 HIGH· v2 SceneKit in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.

Previous 1...949596...161 Next