📦 Mac Os X

CVE-2022-26775 is an integer overflow vulnerability in macOS that allows attackers to cause application crashes or execute arbitrary code. This affects macOS Catalina, Big Sur, and Monterey systems. S...

Apache HTTP Server versions 2.4.52 and earlier contain a vulnerability where the server fails to properly close inbound connections when encountering errors while discarding request bodies. This allow...

CVE-2019-8643 is a critical logic vulnerability in macOS that allows attackers to bypass security restrictions through improper state management. This affects macOS systems prior to Mojave 10.14, pote...

This vulnerability allows applications to gain elevated privileges through improper entitlements management in Apple operating systems. It affects users running vulnerable versions of iOS, macOS, tvOS...

CVE-2021-30678 is a critical logic vulnerability in macOS that allows remote attackers to cause application crashes or execute arbitrary code. This affects macOS Big Sur, Catalina, and Mojave systems....

This CVE addresses multiple security vulnerabilities in Apache HTTP Server that could allow remote code execution or denial of service. The vulnerability affects Apache servers running on macOS system...

This macOS vulnerability allows applications to execute arbitrary code with system privileges, potentially leading to complete system compromise. It affects macOS Catalina and earlier Big Sur versions...

CVE-2021-1882 is a critical memory corruption vulnerability in Apple operating systems that allows an application to gain elevated privileges. This affects iOS, iPadOS, macOS, watchOS, and tvOS system...

CVE-2021-1834 is an out-of-bounds write vulnerability in macOS that allows a malicious application to execute arbitrary code with kernel privileges. This affects macOS Big Sur, Catalina, and Mojave sy...

This macOS kernel vulnerability allows malicious applications to execute arbitrary code with kernel privileges, potentially taking full control of affected systems. It affects macOS Big Sur, Catalina,...

CVE-2021-30805 is a critical memory corruption vulnerability in macOS that allows an application to execute arbitrary code with kernel privileges. This affects macOS Big Sur, Catalina, and Mojave syst...

CVE-2021-1818 is a critical logic vulnerability in Apple operating systems that allows remote attackers to cause application crashes or execute arbitrary code. This affects macOS, iOS, iPadOS, watchOS...

CVE-2021-1870 is a critical logic vulnerability in Apple operating systems that allows remote attackers to execute arbitrary code on affected devices. This affects macOS, iOS, and iPadOS systems runni...

This CVE describes a buffer overflow vulnerability in macOS that could allow attackers to execute arbitrary code on affected systems. It affects macOS High Sierra, Mojave, and Catalina versions before...

CVE-2019-8767 is a critical heap corruption vulnerability in macOS that allows attackers to execute arbitrary code or cause denial of service by processing malicious strings. This affects macOS users ...

CVE-2019-8746 is a critical out-of-bounds read vulnerability in multiple Apple products that allows remote attackers to cause application crashes or execute arbitrary code. It affects macOS, iOS, tvOS...

CVE-2019-8756 is a critical memory corruption vulnerability in libxml2 affecting multiple Apple products. It allows attackers to execute arbitrary code or cause denial of service through specially cra...

CVE-2019-8716 is a critical memory corruption vulnerability in macOS that allows an application to execute arbitrary code with system privileges. This affects macOS systems prior to Catalina 10.15.1, ...

CVE-2019-8547 is an out-of-bounds read vulnerability in Apple operating systems that allows remote attackers to leak kernel memory. This could expose sensitive system information. Affected users inclu...

This vulnerability in Apple's FaceTime service allowed attackers to potentially access Live Photos data without proper authorization. It affected macOS and iOS users running vulnerable versions. The i...

CVE-2023-27960 is a privilege escalation vulnerability in GarageBand for macOS that allows an application to gain elevated privileges during installation. This affects macOS users who install or have ...

This memory corruption vulnerability in Apple's image processing allows attackers to execute arbitrary code by tricking users into opening malicious images. It affects multiple Apple operating systems...

This is a macOS kernel vulnerability that allows an application to write data beyond allocated memory boundaries. Successful exploitation enables arbitrary code execution with kernel privileges, affec...

This is a memory corruption vulnerability in macOS that allows an application to execute arbitrary code with kernel privileges. It affects macOS Catalina and Big Sur systems. Successful exploitation g...

This CVE-2022-26770 is an out-of-bounds read vulnerability in macOS that allows malicious applications to execute arbitrary code with kernel privileges. It affects macOS Catalina, Big Sur, and Montere...

This macOS vulnerability allows malicious applications to bypass symlink validation and gain elevated privileges. It affects macOS Monterey versions before 12.4. Attackers could exploit this to execut...

This is a memory corruption vulnerability in Apple operating systems that allows an application to execute arbitrary code with kernel privileges. It affects multiple Apple platforms including iOS, mac...

CVE-2022-26721 is a memory initialization vulnerability in macOS that allows a malicious application to gain root privileges. This affects macOS Catalina, Big Sur, and Monterey systems that haven't be...

This vulnerability allows attackers to read memory outside intended boundaries when processing malicious AppleScript binary files. It affects macOS Catalina, Big Sur, and Monterey users, potentially c...

CVE-2022-22672 is a memory corruption vulnerability in Apple operating systems that allows malicious applications to execute arbitrary code with kernel privileges. This affects iOS, iPadOS, and macOS ...

This vulnerability in zlib allows memory corruption during compression (deflating) when processing input with many distant matches. It affects any software using vulnerable zlib versions for compressi...

This CVE-2022-22661 is a type confusion vulnerability in macOS that allows an application to execute arbitrary code with kernel privileges. It affects macOS Catalina, Big Sur, and Monterey systems. Su...

CVE-2022-22665 is a privilege escalation vulnerability in macOS that allows malicious applications to gain root privileges through a logic issue. This affects macOS Monterey systems before version 12....

This vulnerability allows attackers to cause AppleScript binaries to read memory outside intended bounds, potentially leading to application crashes or memory disclosure. It affects macOS systems runn...

This is a use-after-free vulnerability in Apple operating systems that allows malicious applications to execute arbitrary code with kernel privileges. It affects iOS, iPadOS, tvOS, watchOS, and macOS ...

CVE-2022-22617 is a logic issue in macOS that allows an application to gain elevated privileges, potentially leading to unauthorized system access. It affects macOS Big Sur, Monterey, and Catalina ver...

This vulnerability allows attackers to read memory outside intended boundaries when processing malicious AppleScript binaries. It affects macOS Catalina, Big Sur, and Monterey users, potentially causi...

CVE-2022-22579 is a memory corruption vulnerability in Apple's STL file processing that could allow arbitrary code execution or application crashes. Attackers can exploit this by tricking users into o...

This CVE describes a buffer overflow vulnerability in Apple operating systems that allows a malicious application to execute arbitrary code with kernel privileges. It affects iOS, iPadOS, watchOS, tvO...

CVE-2022-22719 is a memory corruption vulnerability in Apache HTTP Server where a specially crafted request body can cause the server to read from random memory locations, potentially leading to a den...

CVE-2022-23308 is a use-after-free vulnerability in libxml2's validation component that allows attackers to potentially execute arbitrary code or cause denial of service. It affects applications that ...

CVE-2021-4166 is an out-of-bounds read vulnerability in Vim text editor that allows attackers to read memory contents beyond allocated buffers. This affects users who open specially crafted files in v...

This CVE describes a race condition vulnerability in Apple operating systems that could allow an application to gain elevated privileges. The vulnerability affects multiple Apple platforms including i...

This vulnerability allows a local attacker to execute non-executable text files via an SMB share on macOS systems. The issue involves improper file permission handling that could lead to arbitrary cod...

This vulnerability in Apache HTTP Server allows attackers to crash the server via NULL pointer dereference or perform Server-Side Request Forgery (SSRF) when the server is configured as a forward prox...

CVE-2021-4136 is a heap-based buffer overflow vulnerability in Vim that allows attackers to execute arbitrary code by tricking users into opening specially crafted files. This affects all users who op...

This is a macOS kernel memory corruption vulnerability that allows malicious applications to execute arbitrary code with kernel privileges. It affects macOS Catalina, Big Sur, and Monterey systems bef...

CVE-2021-30834 is a logic vulnerability in Apple's audio file processing that could allow attackers to crash applications or execute arbitrary code by tricking users into opening malicious audio files...

CVE-2021-30832 is a memory corruption vulnerability in macOS that allows local attackers to escalate privileges. This affects macOS Catalina and Big Sur systems. Attackers could gain root access on un...

This vulnerability allows arbitrary code execution by processing a maliciously crafted dfont file. It affects Apple devices running vulnerable versions of iOS, iPadOS, macOS, tvOS, and watchOS. Attack...

CVE-2021-30843 is a memory corruption vulnerability in Apple's dfont file processing that allows arbitrary code execution when a malicious dfont file is opened. This affects multiple Apple operating s...

A race condition vulnerability in macOS Catalina's NFS client allows attackers to execute arbitrary code with system privileges by mounting a malicious NFS share. This affects macOS Catalina systems b...

This CVE describes a URI parsing vulnerability in macOS that allows local users to execute arbitrary files. The issue affects macOS Catalina and Big Sur systems. Attackers could potentially run malici...

This memory corruption vulnerability in macOS allows attackers in a privileged network position to execute arbitrary code on affected systems. It affects macOS Big Sur, Catalina, and Mojave before spe...

This macOS vulnerability allows local users to read kernel memory or cause system crashes through an out-of-bounds read. It affects macOS systems prior to Big Sur 11.4 and Catalina Security Update 202...

This vulnerability allows arbitrary code execution by processing a maliciously crafted image on Apple devices. It affects users running vulnerable versions of iOS, iPadOS, tvOS, watchOS, and macOS who...

This CVE describes a double free vulnerability in Apple operating systems that allows an application to execute arbitrary code with kernel privileges. It affects multiple Apple platforms including iOS...

This memory corruption vulnerability in Apple operating systems allows malicious applications to cause denial of service or potentially leak memory contents. It affects iOS, iPadOS, macOS, tvOS, and w...

This macOS vulnerability allows malicious applications to bypass Privacy preferences, potentially accessing protected data without user consent. It affects macOS Big Sur versions before 11.4. Apple co...

This vulnerability in Apple operating systems allows processing a maliciously crafted message to cause a denial of service. It affects users running vulnerable versions of iOS, iPadOS, tvOS, watchOS, ...

This vulnerability allows attackers to derive the encryption key used during Bluetooth pairing by exploiting insufficient validation of elliptic curve parameters in Diffie-Hellman key exchanges. Affec...