Apple macOS vulnerabilities

3,139 known vulnerabilities affecting apple/mac_os_x.

Total CVEs

3,139

CISA KEV

actively exploited

Public exploits

277

Exploited in wild

Severity breakdown

CRITICAL302HIGH1409MEDIUM1236LOW192

Vulnerabilities

Page 63 of 157

CVE-2017-7078MEDIUMCVSS 5.3≤ 10.12.62017-10-23

CVE-2017-7078 [MEDIUM] CWE-319 CVE-2017-7078: An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. The issue involves the "Mail Drafts" component. It allows remote attackers to obtain sensitive information by reading unintended cleartext transmissions.

nvd

CVE-2017-7143MEDIUMCVSS 5.5≤ 10.12.62017-10-23

CVE-2017-7143 [MEDIUM] CWE-319 CVE-2017-7143: An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involve An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Captive Network Assistant" component. It allows remote attackers to discover cleartext passwords in opportunistic circumstances by sniffing the network during use of the captive portal browser, which has a UI error that can lead to cleartext tran

nvd

CVE-2017-7138LOWCVSS 3.3≤ 10.12.62017-10-23

CVE-2017-7138 [LOW] CWE-200 CVE-2017-7138: An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involve An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Directory Utility" component. It allows local users to discover the Apple ID of the computer's owner.

nvd

CVE-2017-7082LOWCVSS 2.4≤ 10.12.62017-10-23

CVE-2017-7082 [LOW] CWE-200 CVE-2017-7082: An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involve An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Screen Lock" component. It allows physically proximate attackers to read Application Firewall prompts.

nvd

CVE-2017-7084LOWCVSS 3.7≤ 10.12.62017-10-23

CVE-2017-7084 [LOW] CVE-2017-7084: An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involve An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Application Firewall" component. It allows remote attackers to bypass intended settings in opportunistic circumstances by leveraging incorrect handling of a denied setting after an upgrade.

nvd

CVE-2017-7062CRITICALCVSS 9.8≤ 10.12.52017-07-20

CVE-2017-7062 [CRITICAL] CWE-119 CVE-2017-7062: An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12 An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is affected. watchOS before 3.2.3 is affected. The issue involves the "Contacts" component. A buffer overflow allows remote attackers to execute arbitrary code or cause a denial of service (application crash).

nvd

CVE-2017-7054HIGHCVSS 8.0≤ 10.12.52017-07-20

CVE-2017-7054 [HIGH] CWE-119 CVE-2017-7054: An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue invol An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue involves the "Bluetooth" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

nvd

CVE-2017-7014HIGHCVSS 7.8≤ 10.12.52017-07-20

CVE-2017-7014 [HIGH] CWE-119 CVE-2017-7014: An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue invol An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

nvd

CVE-2017-7035HIGHCVSS 7.8≤ 10.12.52017-07-20

CVE-2017-7035 [HIGH] CWE-119 CVE-2017-7035: An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue invol An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

nvd

CVE-2017-7010HIGHCVSS 7.8≤ 10.12.52017-07-20

CVE-2017-7010 [HIGH] CWE-125 CVE-2017-7010: An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12 An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. The issue involves the "libxml2" component. It allows remote attackers to obtain sensitive information or cause a deni

nvd

CVE-2017-7050HIGHCVSS 8.0≤ 10.12.52017-07-20

CVE-2017-7050 [HIGH] CWE-119 CVE-2017-7050: An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue invol An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue involves the "Bluetooth" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

nvd

CVE-2017-7009HIGHCVSS 7.8≤ 10.12.52017-07-20

CVE-2017-7009 [HIGH] CWE-119 CVE-2017-7009: An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12 An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is affected. watchOS before 3.2.3 is affected. The issue involves the "IOUSBFamily" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a

nvd

CVE-2017-7033HIGHCVSS 7.8≤ 10.12.52017-07-20

CVE-2017-7033 [HIGH] CWE-119 CVE-2017-7033: An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue invol An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue involves the "afclip" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted audio file.

nvd

CVE-2017-7013HIGHCVSS 7.8≤ 10.12.52017-07-20

CVE-2017-7013 [HIGH] CWE-125 CVE-2017-7013: An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12 An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. iCloud before 6.2.2 on Windows is affected. iTunes before 12.6.2 on Windows is affected. tvOS before 10.2.2 is affected. watchOS before 3.2.3 is affected. The issue involves the "libxml2" component. It allows remote attackers to obtain sen

nvd

CVE-2017-7015HIGHCVSS 7.8≤ 10.12.52017-07-20

CVE-2017-7015 [HIGH] CWE-119 CVE-2017-7015: An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue invol An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue involves the "Audio" component. It allows remote attackers to obtain sensitive information from process memory or cause a denial of service (memory corruption) via a crafted audio file.

nvd

CVE-2017-7051HIGHCVSS 8.0≤ 10.12.52017-07-20

CVE-2017-7051 [HIGH] CWE-119 CVE-2017-7051: An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue invol An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue involves the "Bluetooth" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

nvd

CVE-2017-7047HIGHCVSS 8.8PoCfixed in 10.12.62017-07-20

CVE-2017-7047 [HIGH] CWE-119 CVE-2017-7047: An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12 An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is affected. watchOS before 3.2.3 is affected. The issue involves the "libxpc" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a craft

nvd

CVE-2017-7017HIGHCVSS 7.8≤ 10.12.52017-07-20

CVE-2017-7017 [HIGH] CWE-119 CVE-2017-7017: An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue invol An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

nvd

CVE-2017-7031HIGHCVSS 7.8≤ 10.12.52017-07-20

CVE-2017-7031 [HIGH] CWE-119 CVE-2017-7031: An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue invol An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue involves the "Foundation" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted file.

nvd

CVE-2017-7016HIGHCVSS 7.8≤ 10.12.52017-07-20

CVE-2017-7016 [HIGH] CWE-119 CVE-2017-7016: An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue invol An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue involves the "afclip" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted audio file.

nvd

← Previous63 / 157Next →