Mac Os X

mac_os_x

Vendor: Apple • 3,210 CVEs

CVEs (3,210)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2015-3782 1Apple 2Iphone Os Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 4.3 MEDIUM· v2 CloudKit in Apple iOS before 8.4.1 and OS X before 10.10.5 allows attackers to access an iCloud user record associated with a previous user's login session via a crafted app.
CVE-2015-3781 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability in Quick Look in Apple OS X before 10.10.5 allows remote attackers to inject arbitrary web script or HTML via a previously visited web site that is rendered during a Quick Look se...Show more Cross-site scripting (XSS) vulnerability in Quick Look in Apple OS X before 10.10.5 allows remote attackers to inject arbitrary web script or HTML via a previously visited web site that is rendered during a Quick Look search.Show less
CVE-2015-3780 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The Bluetooth subsystem in Apple OS X before 10.10.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app.
CVE-2015-3778 1Apple 2Iphone Os Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 3.3 LOW· v2 bootp in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to obtain potentially sensitive information about MAC addresses seen in previous Wi-Fi sessions by sniffing an 802.11 network for DNAv4 broa...Show more bootp in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to obtain potentially sensitive information about MAC addresses seen in previous Wi-Fi sessions by sniffing an 802.11 network for DNAv4 broadcast traffic.Show less
CVE-2015-3777 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 Multiple buffer overflows in blued in the Bluetooth subsystem in Apple OS X before 10.10.5 allow local users to gain privileges via XPC messages.
CVE-2015-3776 1Apple 2Iphone Os Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 9.3 HIGH· v2 IOKit in Apple iOS before 8.4.1 and OS X before 10.10.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption and application crash) via a malformed plist.
CVE-2015-3775 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 Apple OS X before 10.10.5 does not properly implement authentication, which allows local users to obtain admin privileges via unspecified vectors.
CVE-2015-3774 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 4.8 MEDIUM· v2 The Dictionary app in Apple OS X before 10.10.5 does not use HTTPS, which allows man-in-the-middle attackers to obtain sensitive information by sniffing the network or spoof word definitions by modifying the client-serve...Show more The Dictionary app in Apple OS X before 10.10.5 does not use HTTPS, which allows man-in-the-middle attackers to obtain sensitive information by sniffing the network or spoof word definitions by modifying the client-server data stream.Show less
CVE-2015-3773 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 7.5 HIGH· v2 The SMB client in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.
CVE-2015-3772 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 IOFireWireFamily in Apple OS X before 10.10.5 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-3769 and CVE-2015-3771...Show more IOFireWireFamily in Apple OS X before 10.10.5 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-3769 and CVE-2015-3771.Show less
CVE-2015-3771 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 IOFireWireFamily in Apple OS X before 10.10.5 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-3769 and CVE-2015-3772...Show more IOFireWireFamily in Apple OS X before 10.10.5 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-3769 and CVE-2015-3772.Show less
CVE-2015-3770 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 9.3 HIGH· v2 IOGraphics in Apple OS X before 10.10.5 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2015-5783.
CVE-2015-3769 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 IOFireWireFamily in Apple OS X before 10.10.5 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-3771 and CVE-2015-3772...Show more IOFireWireFamily in Apple OS X before 10.10.5 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-3771 and CVE-2015-3772.Show less
CVE-2015-3768 1Apple 2Iphone Os Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 9.3 HIGH· v2 Integer overflow in the kernel in Apple iOS before 8.4.1 and OS X before 10.10.5 allows attackers to execute arbitrary code in a privileged context via a crafted app that makes unspecified IOKit API calls.
CVE-2015-3767 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 udf in Apple OS X before 10.10.5 allows local users to gain privileges or cause a denial of service (memory corruption and application crash) via a malformed DMG image.
CVE-2015-3766 1Apple 2Iphone Os Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The kernel in Apple iOS before 8.4.1 and OS X before 10.10.5 does not properly restrict the mach_port_space_info interface, which allows attackers to obtain sensitive memory-layout information via a crafted app.
CVE-2015-3764 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Notification Center in Apple OS X before 10.10.5 does not properly remove dismissed notifications, which allows attackers to read arbitrary notifications via a crafted app.
CVE-2015-3762 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The Text Formats component in Apple OS X before 10.10.5, as used in TextEdit, allows remote attackers to read arbitrary files via a text file containing an XML external entity declaration in conjunction with an entity re...Show more The Text Formats component in Apple OS X before 10.10.5, as used in TextEdit, allows remote attackers to read arbitrary files via a text file containing an XML external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.Show less
CVE-2015-3761 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 The kernel in Apple OS X before 10.10.5 does not properly validate pathnames in the environment, which allows local users to gain privileges via unspecified vectors.
CVE-2015-3760 1Apple 1Mac Os X May 6, 2026 Aug 16, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 dyld in Apple OS X before 10.10.5 does not properly validate pathnames in the environment, which allows local users to gain privileges via unspecified vectors.

Previous 1...959697...161 Next