Mac Os X

mac_os_x

Vendor: Apple • 3,210 CVEs

CVEs (3,210)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2015-3689 1Apple 2Iphone Os Mac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015...Show more CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015-3685, CVE-2015-3686, CVE-2015-3687, and CVE-2015-3688.Show less
CVE-2015-3688 1Apple 3Iphone Os ItunesMac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015...Show more CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015-3685, CVE-2015-3686, CVE-2015-3687, and CVE-2015-3689.Show less
CVE-2015-3687 1Apple 3Iphone Os ItunesMac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015...Show more CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015-3685, CVE-2015-3686, CVE-2015-3688, and CVE-2015-3689.Show less
CVE-2015-3686 1Apple 3Iphone Os ItunesMac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015...Show more CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015-3685, CVE-2015-3687, CVE-2015-3688, and CVE-2015-3689.Show less
CVE-2015-3685 1Apple 2Iphone Os Mac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015...Show more CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted text file, a different vulnerability than CVE-2015-3686, CVE-2015-3687, CVE-2015-3688, and CVE-2015-3689.Show less
CVE-2015-3684 1Apple 2Iphone Os Mac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 The HTTPAuthentication implementation in CFNetwork in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted credential...Show more The HTTPAuthentication implementation in CFNetwork in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted credentials in a URL.Show less
CVE-2015-3683 1Apple 1Mac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 9.3 HIGH· v2 The Bluetooth HCI interface implementation in Apple OS X before 10.10.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVE-2015-3682 1Apple 1Mac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Apple Type Services (ATS) in Apple OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file, a different vulnerability than CVE-2015-3...Show more Apple Type Services (ATS) in Apple OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file, a different vulnerability than CVE-2015-3679, CVE-2015-3680, and CVE-2015-3681.Show less
CVE-2015-3681 1Apple 1Mac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Apple Type Services (ATS) in Apple OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file, a different vulnerability than CVE-2015-3...Show more Apple Type Services (ATS) in Apple OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file, a different vulnerability than CVE-2015-3679, CVE-2015-3680, and CVE-2015-3682.Show less
CVE-2015-3680 1Apple 1Mac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Apple Type Services (ATS) in Apple OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file, a different vulnerability than CVE-2015-3...Show more Apple Type Services (ATS) in Apple OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file, a different vulnerability than CVE-2015-3679, CVE-2015-3681, and CVE-2015-3682.Show less
CVE-2015-3679 1Apple 1Mac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Apple Type Services (ATS) in Apple OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file, a different vulnerability than CVE-2015-3...Show more Apple Type Services (ATS) in Apple OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file, a different vulnerability than CVE-2015-3680, CVE-2015-3681, and CVE-2015-3682.Show less
CVE-2015-3678 1Apple 1Mac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 AppleThunderboltEDMService in Apple OS X before 10.10.4 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified Thunderbolt commands.
CVE-2015-3677 1Apple 1Mac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The LZVN compression feature in AppleFSCompression in Apple OS X before 10.10.4 allows attackers to obtain sensitive memory-layout information for the kernel via a crafted app.
CVE-2015-3676 1Apple 1Mac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 4.3 MEDIUM· v2 AppleGraphicsControl in Apple OS X before 10.10.4 allows attackers to obtain sensitive memory-layout information via a crafted app.
CVE-2015-3675 1Apple 1Mac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The default configuration of the Apache HTTP Server on Apple OS X before 10.10.4 does not enable the mod_hfs_apple module, which allows remote attackers to bypass HTTP authentication via a crafted URL.
CVE-2015-3674 1Apple 1Mac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 7.5 HIGH· v2 afpserver in Apple OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
CVE-2015-3673 1Apple 1Mac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 Admin Framework in Apple OS X before 10.10.4 does not properly restrict the location of writeconfig clients, which allows local users to obtain root privileges by moving and then modifying Directory Utility.
CVE-2015-3672 1Apple 1Mac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 Admin Framework in Apple OS X before 10.10.4 does not properly handle authentication errors, which allows local users to obtain admin privileges via unspecified vectors.
CVE-2015-3671 1Apple 1Mac Os X May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 7.2 HIGH· v2 Admin Framework in Apple OS X before 10.10.4 does not properly verify XPC entitlements, which allows local users to bypass authentication and obtain admin privileges via unspecified vectors.
CVE-2015-3669 1Apple 2Mac Os X Quicktime May 6, 2026 Jul 3, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 QT Media Foundation in Apple QuickTime before 7.7.7 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, a different vulnerability than CVE-2015-3664 and...Show more QT Media Foundation in Apple QuickTime before 7.7.7 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, a different vulnerability than CVE-2015-3664 and CVE-2015-3665.Show less

Previous 1...9899100...161 Next