Apple macOS vulnerabilities

3,139 known vulnerabilities affecting apple/mac_os_x.

Total CVEs

3,139

CISA KEV

actively exploited

Public exploits

277

Exploited in wild

Severity breakdown

CRITICAL302HIGH1409MEDIUM1236LOW192

Vulnerabilities

Page 35 of 157

CVE-2020-3849CRITICALCVSS 9.8fixed in 10.15.32020-04-01

CVE-2020-3849 [CRITICAL] CWE-20 CVE-2020-3849: A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.

nvd

CVE-2020-3847CRITICALCVSS 9.8fixed in 10.15.32020-04-01

CVE-2020-3847 [CRITICAL] CWE-20 CVE-2020-3847: An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Cat An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker may be able to leak memory.

nvd

CVE-2020-3848CRITICALCVSS 9.8fixed in 10.15.32020-04-01

CVE-2020-3848 [CRITICAL] CWE-20 CVE-2020-3848: A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.

nvd

CVE-2020-3850CRITICALCVSS 9.8fixed in 10.15.32020-04-01

CVE-2020-3850 [CRITICAL] CWE-20 CVE-2020-3850: A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker may be able to cause unexpected application termination or arbitrary code execution.

nvd

CVE-2020-9769CRITICALCVSS 9.8fixed in 10.15.42020-04-01

CVE-2020-9769 [CRITICAL] CVE-2020-9769: Multiple issues were addressed by updating to version 8.1.1850. This issue is fixed in macOS Catalin Multiple issues were addressed by updating to version 8.1.1850. This issue is fixed in macOS Catalina 10.15.4. Multiple issues in Vim.

nvd

CVE-2020-3911CRITICALCVSS 9.8fixed in 10.15.42020-04-01

CVE-2020-3911 [CRITICAL] CWE-120 CVE-2020-3911: A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.4 and i A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Multiple issues in libxml2.

nvd

CVE-2020-3909CRITICALCVSS 9.8fixed in 10.15.42020-04-01

CVE-2020-3909 [CRITICAL] CWE-120 CVE-2020-3909: A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.4 and i A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Multiple issues in libxml2.

nvd

CVE-2020-3910CRITICALCVSS 9.8fixed in 10.15.42020-04-01

CVE-2020-3910 [CRITICAL] CWE-120 CVE-2020-3910: A buffer overflow was addressed with improved size validation. This issue is fixed in iOS 13.4 and i A buffer overflow was addressed with improved size validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2, iTunes for Windows 12.10.5, iCloud for Windows 10.9.3, iCloud for Windows 7.18. Multiple issues in libxml2.

nvd

CVE-2020-3912HIGHCVSS 7.1fixed in 10.15.42020-04-01

CVE-2020-3912 [HIGH] CWE-125 CVE-2020-3912: An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Cat An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.4. A local user may be able to cause unexpected system termination or read kernel memory.

nvd

CVE-2020-3892HIGHCVSS 7.8fixed in 10.15.42020-04-01

CVE-2020-3892 [HIGH] CWE-20 CVE-2020-3892: A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.4. A malicious application may be able to execute arbitrary code with kernel privileges.

nvd

CVE-2020-3907HIGHCVSS 7.1fixed in 10.15.42020-04-01

CVE-2020-3907 [HIGH] CWE-125 CVE-2020-3907: An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Cat An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.4. A local user may be able to cause unexpected system termination or read kernel memory.

nvd

CVE-2020-3908HIGHCVSS 7.1fixed in 10.15.42020-04-01

CVE-2020-3908 [HIGH] CWE-125 CVE-2020-3908: An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Cat An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.4. A local user may be able to cause unexpected system termination or read kernel memory.

nvd

CVE-2020-3905HIGHCVSS 7.8fixed in 10.15.42020-04-01

CVE-2020-3905 [HIGH] CWE-20 CVE-2020-3905: A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.4. A malicious application may be able to execute arbitrary code with kernel privileges.

nvd

CVE-2020-3893HIGHCVSS 7.8fixed in 10.15.42020-04-01

CVE-2020-3893 [HIGH] CWE-20 CVE-2020-3893: A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.4. A malicious application may be able to execute arbitrary code with kernel privileges.

nvd

CVE-2020-9785HIGHCVSS 7.8fixed in 10.15.42020-04-01

CVE-2020-9785 [HIGH] CWE-787 CVE-2020-9785: Multiple memory corruption issues were addressed with improved state management. This issue is fixed Multiple memory corruption issues were addressed with improved state management. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A malicious application may be able to execute arbitrary code with kernel privileges.

nvd

CVE-2020-3904HIGHCVSS 7.8fixed in 10.15.42020-04-01

CVE-2020-3904 [HIGH] CWE-787 CVE-2020-3904: Multiple memory corruption issues were addressed with improved state management. This issue is fixed Multiple memory corruption issues were addressed with improved state management. This issue is fixed in macOS Catalina 10.15.4. A malicious application may be able to execute arbitrary code with kernel privileges.

nvd

CVE-2020-3883HIGHCVSS 8.8fixed in 10.15.42020-04-01

CVE-2020-3883 [HIGH] CVE-2020-3883: This issue was addressed with improved checks. This issue is fixed in iOS 13.4 and iPadOS 13.4, macO This issue was addressed with improved checks. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. An application may be able to use arbitrary entitlements.

nvd

CVE-2020-3903HIGHCVSS 7.8fixed in 10.15.42020-04-01

CVE-2020-3903 [HIGH] CWE-787 CVE-2020-3903: A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15.4. An application may be able to execute arbitrary code with system privileges.

nvd

CVE-2020-3919HIGHCVSS 7.8fixed in 10.15.42020-04-01

CVE-2020-3919 [HIGH] CWE-665 CVE-2020-3919: A memory initialization issue was addressed with improved memory handling. This issue is fixed in iO A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13.4, watchOS 6.2. A malicious application may be able to execute arbitrary code with kernel privileges.

nvd

CVE-2020-3913HIGHCVSS 7.8fixed in 10.15.42020-04-01

CVE-2020-3913 [HIGH] CVE-2020-3913: A permissions issue existed. This issue was addressed with improved permission validation. This issu A permissions issue existed. This issue was addressed with improved permission validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4, watchOS 6.2. A malicious application may be able to elevate privileges.

nvd

← Previous35 / 157Next →