Mac Os X

mac_os_x

Vendor: Apple • 3,210 CVEs

CVEs (3,210)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-3870 1Apple 5Ipados Iphone OsMac Os X+2 more Nov 21, 2024 Feb 27, 2020 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. Processing a maliciously crafted image may lead...Show more An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. Processing a maliciously crafted image may lead to arbitrary code execution.Show less
CVE-2020-3866 1Apple 1Mac Os X Nov 21, 2024 Feb 27, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 This was addressed with additional checks by Gatekeeper on files mounted through a network share. This issue is fixed in macOS Catalina 10.15.3. Searching for and opening a file from an attacker controlled NFS mount may...Show more This was addressed with additional checks by Gatekeeper on files mounted through a network share. This issue is fixed in macOS Catalina 10.15.3. Searching for and opening a file from an attacker controlled NFS mount may bypass Gatekeeper.Show less
CVE-2020-3857 1Apple 5Ipados Iphone OsMac Os X+2 more Nov 21, 2024 Feb 27, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitr...Show more A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitrary code with system privileges.Show less
CVE-2020-3856 1Apple 5Ipados Iphone OsMac Os X+2 more Nov 21, 2024 Feb 27, 2020 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. Processing a maliciously crafted string may...Show more A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. Processing a maliciously crafted string may lead to heap corruption.Show less
CVE-2020-3854 1Apple 1Mac Os X Nov 21, 2024 Feb 27, 2020 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15.3. An application may be able to execute arbitrary code with system privileges.
CVE-2020-3853 1Apple 5Ipados Iphone OsMac Os X+2 more Nov 21, 2024 Feb 27, 2020 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. A malicious application may be able to execute...Show more A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. A malicious application may be able to execute arbitrary code with system privileges.Show less
CVE-2020-3846 1Apple 7Icloud IpadosIphone Os+4 more Nov 21, 2024 Feb 27, 2020 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 A buffer overflow was addressed with improved size validation. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2, iTunes for Windows 12.10.4, iCloud for Windows 11.0,...Show more A buffer overflow was addressed with improved size validation. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2, iTunes for Windows 12.10.4, iCloud for Windows 11.0, iCloud for Windows 7.17. Processing maliciously crafted XML may lead to an unexpected application termination or arbitrary code execution.Show less
CVE-2020-3845 1Apple 1Mac Os X Nov 21, 2024 Feb 27, 2020 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15.3. An application may be able to execute arbitrary code with system privileges.
CVE-2020-3842 1Apple 5Ipados Iphone OsMac Os X+2 more Nov 21, 2024 Feb 27, 2020 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitr...Show more A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitrary code with kernel privileges.Show less
CVE-2020-3840 1Apple 4Ipados Iphone OsMac Os X+1 more Nov 21, 2024 Feb 27, 2020 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 An off by one issue existed in the handling of racoon configuration files. This issue was addressed through improved bounds checking. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3...Show more An off by one issue existed in the handling of racoon configuration files. This issue was addressed through improved bounds checking. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1. Loading a maliciously crafted racoon configuration file may lead to arbitrary code execution.Show less
CVE-2020-3839 1Apple 1Mac Os X Nov 21, 2024 Feb 27, 2020 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Catalina 10.15.3. An application may be able to read restricted memory.
CVE-2020-3838 1Apple 5Ipados Iphone OsMac Os X+2 more Nov 21, 2024 Feb 27, 2020 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 The issue was addressed with improved permissions logic. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitrary code with...Show more The issue was addressed with improved permissions logic. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitrary code with system privileges.Show less
CVE-2020-3837 1Apple 5Ipados Iphone OsMac Os X+2 more Oct 23, 2025 Feb 27, 2020 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitr...Show more A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitrary code with kernel privileges.Show less
CVE-2020-3836 1Apple 5Ipados Iphone OsMac Os X+2 more Nov 21, 2024 Feb 27, 2020 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 An access issue was addressed with improved memory management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. A malicious application may be able to determine ker...Show more An access issue was addressed with improved memory management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. A malicious application may be able to determine kernel memory layout.Show less
CVE-2020-3835 1Apple 1Mac Os X Nov 21, 2024 Feb 27, 2020 N/A· v4 4.4 MEDIUM· v3 3.6 LOW· v2 A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Catalina 10.15.3. A malicious application may be able to access restrict...Show more A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Catalina 10.15.3. A malicious application may be able to access restricted files.Show less
CVE-2020-3830 1Apple 1Mac Os X Nov 21, 2024 Feb 27, 2020 N/A· v4 3.3 LOW· v3 3.6 LOW· v2 A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Catalina 10.15.3. A malicious application may be able to overwrite arbit...Show more A validation issue existed in the handling of symlinks. This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Catalina 10.15.3. A malicious application may be able to overwrite arbitrary files.Show less
CVE-2020-3829 1Apple 5Ipados Iphone OsMac Os X+2 more Nov 21, 2024 Feb 27, 2020 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to gain elevated priv...Show more An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to gain elevated privileges.Show less
CVE-2020-3827 1Apple 1Mac Os X Nov 21, 2024 Feb 27, 2020 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. Viewing a maliciously crafted JPEG file may lead to arbitrary code execution.
CVE-2020-3826 1Apple 7Icloud IpadosIphone Os+4 more Nov 21, 2024 Feb 27, 2020 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2, iTunes for Windows 12.10.4, iCloud for Windows...Show more An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2, iTunes for Windows 12.10.4, iCloud for Windows 11.0, iCloud for Windows 7.17. Processing a maliciously crafted image may lead to arbitrary code execution.Show less
CVE-2019-20044 4Apple DebianFedoraproject+1 more 8Debian Linux FedoraIpados+5 more Nov 21, 2024 Feb 24, 2020 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 In Zsh before 5.8, attackers able to execute commands can regain privileges dropped by the --no-PRIVILEGED option. Zsh fails to overwrite the saved uid, so the original privileges can be restored by executing MODULE_PATH...Show more In Zsh before 5.8, attackers able to execute commands can regain privileges dropped by the --no-PRIVILEGED option. Zsh fails to overwrite the saved uid, so the original privileges can be restored by executing MODULE_PATH=/dir/with/module zmodload with a module that calls setuid().Show less

Previous 1...363738...161 Next