Mac Os X

mac_os_x

Vendor: Apple • 3,210 CVEs

CVEs (3,210)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-11763 6Apple CanonicalDebian+3 more 12Debian Linux FedoraIcloud+9 more Nov 21, 2024 Apr 14, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in OpenEXR before 2.4.1. There is an std::vector out-of-bounds read and write, as demonstrated by ImfTileOffsets.cpp.
CVE-2020-11762 6Apple CanonicalDebian+3 more 12Debian Linux FedoraIcloud+9 more Nov 21, 2024 Apr 14, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read and write in DwaCompressor::uncompress in ImfDwaCompressor.cpp when handling the UNKNOWN compression case.
CVE-2020-11761 5Apple CanonicalDebian+2 more 11Debian Linux FedoraIcloud+8 more Nov 21, 2024 Apr 14, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during Huffman uncompression, as demonstrated by FastHufDecoder::refill in ImfFastHuf.cpp.
CVE-2020-11760 6Apple CanonicalDebian+3 more 12Debian Linux FedoraIcloud+9 more Nov 21, 2024 Apr 14, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read during RLE uncompression in rleUncompress in ImfRle.cpp.
CVE-2020-11759 5Apple CanonicalDebian+2 more 11Debian Linux FedoraIcloud+8 more Nov 21, 2024 Apr 14, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in OpenEXR before 2.4.1. Because of integer overflows in CompositeDeepScanLine::Data::handleDeepFrameBuffer and readSampleCountForLineBlock, an attacker can write to an out-of-bounds pointer.
CVE-2020-11758 6Apple CanonicalDebian+3 more 12Debian Linux FedoraIcloud+9 more Nov 21, 2024 Apr 14, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds read in ImfOptimizedPixelReading.h.
CVE-2019-14868 3Apple DebianKsh Project 3Debian Linux KshMac Os X Nov 21, 2024 Apr 2, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and appl...Show more In ksh version 20120801, a flaw was found in the way it evaluates certain environment variables. An attacker could use this flaw to override or bypass environment restrictions to execute shell commands. Services and applications that allow remote unauthenticated attackers to provide one of those environment variables could allow them to exploit this issue remotely.Show less
CVE-2020-3850 1Apple 1Mac Os X Nov 21, 2024 Apr 1, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker may be able to cause unexpected application termination or arbitrary code execution...Show more A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.Show less
CVE-2020-3849 1Apple 1Mac Os X Nov 21, 2024 Apr 1, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker may be able to cause unexpected application termination or arbitrary code execution...Show more A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.Show less
CVE-2020-3848 1Apple 1Mac Os X Nov 21, 2024 Apr 1, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker may be able to cause unexpected application termination or arbitrary code execution...Show more A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.Show less
CVE-2020-3847 1Apple 1Mac Os X Nov 21, 2024 Apr 1, 2020 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker may be able to leak memory.
CVE-2020-9785 1Apple 5Ipados Iphone OsMac Os X+2 more Nov 21, 2024 Apr 1, 2020 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 Multiple memory corruption issues were addressed with improved state management. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A malicious application may be able to exe...Show more Multiple memory corruption issues were addressed with improved state management. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A malicious application may be able to execute arbitrary code with kernel privileges.Show less
CVE-2020-9776 1Apple 1Mac Os X Nov 21, 2024 Apr 1, 2020 N/A· v4 3.3 LOW· v3 4.3 MEDIUM· v2 This issue was addressed with a new entitlement. This issue is fixed in macOS Catalina 10.15.4. A malicious application may be able to access a user's call history.
CVE-2020-9775 1Apple 3Ipados Iphone OsMac Os X Nov 21, 2024 Apr 1, 2020 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An issue existed in the handling of tabs displaying picture in picture video. The issue was corrected with improved state handling. This issue is fixed in iOS 13.4 and iPadOS 13.4. A user's private browsing activity may...Show more An issue existed in the handling of tabs displaying picture in picture video. The issue was corrected with improved state handling. This issue is fixed in iOS 13.4 and iPadOS 13.4. A user's private browsing activity may be unexpectedly saved in Screen Time.Show less
CVE-2020-9769 1Apple 1Mac Os X Nov 21, 2024 Apr 1, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Multiple issues were addressed by updating to version 8.1.1850. This issue is fixed in macOS Catalina 10.15.4. Multiple issues in Vim.
CVE-2020-3919 1Apple 5Ipados Iphone OsMac Os X+2 more Nov 21, 2024 Apr 1, 2020 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A malicious application may be able to execute a...Show more A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A malicious application may be able to execute arbitrary code with kernel privileges.Show less
CVE-2020-3914 1Apple 5Ipados Iphone OsMac Os X+2 more Nov 21, 2024 Apr 1, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. An application may be able to read restricted me...Show more A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. An application may be able to read restricted memory.Show less
CVE-2020-3913 1Apple 4Ipados Iphone OsMac Os X+1 more Nov 21, 2024 Apr 1, 2020 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A permissions issue existed. This issue was addressed with improved permission validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, watchOS 6.2. A malicious application may be able to elev...Show more A permissions issue existed. This issue was addressed with improved permission validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, watchOS 6.2. A malicious application may be able to elevate privileges.Show less
CVE-2020-3912 1Apple 1Mac Os X Nov 21, 2024 Apr 1, 2020 N/A· v4 7.1 HIGH· v3 6.6 MEDIUM· v2 An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.4. A local user may be able to cause unexpected system termination or read kernel memory.
CVE-2020-3911 1Apple 7Icloud IpadosIphone Os+4 more Nov 21, 2024 Apr 1, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iClou...Show more A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Multiple issues in libxml2.Show less

Previous 1...343536...161 Next