Apple Macos Sierra vulnerabilities
81 known vulnerabilities affecting apple/macos_sierra.
Total CVEs
81
CISA KEV
0
Public exploits
6
Exploited in wild
0
Severity breakdown
CRITICAL16HIGH44MEDIUM16LOW5
Vulnerabilities
Page 1 of 5
CVE-2016-8670CRITICALCVSS 9.8v10.12.32017-01-23
CVE-2016-8670 [CRITICAL] CVE-2016-8670: macOS Sierra 10.12.3
Apple Security Update: About the security content of macOS Sierra 10.12.3
Product: macOS Sierra
Version: 10.12.3
CVE: CVE-2016-8670
Component: CVE-2016-8670
apple
CVE-2016-9933HIGHCVSS 7.5v10.12.32017-01-23
CVE-2016-9933 [HIGH] CVE-2016-9933: macOS Sierra 10.12.3
Apple Security Update: About the security content of macOS Sierra 10.12.3
Product: macOS Sierra
Version: 10.12.3
CVE: CVE-2016-9933
Component: CVE-2016-9933
apple
CVE-2017-2358HIGHCVSS 7.8v10.12.32017-01-23
CVE-2017-2358 [HIGH] CVE-2017-2358: macOS Sierra 10.12.3
Apple Security Update: About the security content of macOS Sierra 10.12.3
Product: macOS Sierra
Version: 10.12.3
CVE: CVE-2017-2358
Component: Graphics Drivers
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A memory corruption issue was addressed through improved input validation.
apple
CVE-2017-2353HIGHCVSS 7.8PoCv10.12.32017-01-23
CVE-2017-2353 [HIGH] CVE-2017-2353: macOS Sierra 10.12.3
Apple Security Update: About the security content of macOS Sierra 10.12.3
Product: macOS Sierra
Version: 10.12.3
CVE: CVE-2017-2353
Component: Bluetooth
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A use after free issue was addressed through improved memory management.
apple
CVE-2016-9934HIGHCVSS 7.5v10.12.32017-01-23
CVE-2016-9934 [HIGH] CVE-2016-9934: macOS Sierra 10.12.3
Apple Security Update: About the security content of macOS Sierra 10.12.3
Product: macOS Sierra
Version: 10.12.3
CVE: CVE-2016-9934
Component: CVE-2016-9934
apple
CVE-2016-8687HIGHCVSS 7.5v10.12.32017-01-23
CVE-2016-8687 [HIGH] CVE-2016-8687: macOS Sierra 10.12.3
Apple Security Update: About the security content of macOS Sierra 10.12.3
Product: macOS Sierra
Version: 10.12.3
CVE: CVE-2016-8687
Component: Kernel
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A use after free issue was addressed through improved memory management.
apple
CVE-2016-1248HIGHCVSS 7.8PoCv10.12.32017-01-23
CVE-2016-1248 [HIGH] CVE-2016-1248: macOS Sierra 10.12.3
Apple Security Update: About the security content of macOS Sierra 10.12.3
Product: macOS Sierra
Version: 10.12.3
CVE: CVE-2016-1248
Component: Vim
Impact: Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution
Description: An input validation issue existed in modelines. This was addressed through improved input validation.
apple
CVE-2017-2370HIGHCVSS 7.8PoCv10.12.32017-01-23
CVE-2017-2370 [HIGH] CVE-2017-2370: macOS Sierra 10.12.3
Apple Security Update: About the security content of macOS Sierra 10.12.3
Product: macOS Sierra
Version: 10.12.3
CVE: CVE-2017-2370
Component: Kernel
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A buffer overflow issue was addressed through improved memory handling.
apple
CVE-2017-2360HIGHCVSS 7.8PoCv10.12.32017-01-23
CVE-2017-2360 [HIGH] CVE-2017-2360: macOS Sierra 10.12.3
Apple Security Update: About the security content of macOS Sierra 10.12.3
Product: macOS Sierra
Version: 10.12.3
CVE: CVE-2017-2360
Component: Kernel
Impact: An application may be able to execute arbitrary code with kernel privileges
Description: A use after free issue was addressed through improved memory management.
apple
CVE-2017-2361MEDIUMCVSS 6.1PoCv10.12.32017-01-23
CVE-2017-2361 [MEDIUM] CVE-2017-2361: macOS Sierra 10.12.3
Apple Security Update: About the security content of macOS Sierra 10.12.3
Product: macOS Sierra
Version: 10.12.3
CVE: CVE-2017-2361
Component: Help Viewer
Impact: Processing maliciously crafted web content may lead to arbitrary code execution
Description: A cross-site scripting issue was addressed through improved URL validation.
apple
CVE-2017-2383LOWCVSS 3.1v10.12.32017-01-23
CVE-2017-2383 [LOW] CVE-2017-2383: macOS Sierra 10.12.3
Apple Security Update: About the security content of macOS Sierra 10.12.3
Product: macOS Sierra
Version: 10.12.3
CVE: CVE-2017-2383
Component: APNs Server
Impact: An attacker in a privileged network position can track a user's activity
Description: A client certificate was sent in plaintext. This issue was addressed through improved certificate handling.
apple
CVE-2017-2357LOWCVSS 3.3v10.12.32017-01-23
CVE-2017-2357 [LOW] CVE-2017-2357: macOS Sierra 10.12.3
Apple Security Update: About the security content of macOS Sierra 10.12.3
Product: macOS Sierra
Version: 10.12.3
CVE: CVE-2017-2357
Component: IOAudioFamily
Impact: An application may be able to determine kernel memory layout
Description: An uninitialized memory issue was addressed through improved memory management.
apple
CVE-2016-6291CRITICALCVSS 9.8v10.122016-09-20
CVE-2016-6291 [CRITICAL] CVE-2016-6291: macOS Sierra 10.12
Apple Security Update: About the security content of macOS Sierra 10.12
Product: macOS Sierra
Version: 10.12
CVE: CVE-2016-6291
Component: CVE-2016-6291
apple
CVE-2016-5770CRITICALCVSS 9.8v10.122016-09-20
CVE-2016-5770 [CRITICAL] CVE-2016-5770: macOS Sierra 10.12
Apple Security Update: About the security content of macOS Sierra 10.12
Product: macOS Sierra
Version: 10.12
CVE: CVE-2016-5770
Component: CVE-2016-5770
apple
CVE-2016-5769CRITICALCVSS 9.8v10.122016-09-20
CVE-2016-5769 [CRITICAL] CVE-2016-5769: macOS Sierra 10.12
Apple Security Update: About the security content of macOS Sierra 10.12
Product: macOS Sierra
Version: 10.12
CVE: CVE-2016-5769
Component: CVE-2016-5769
apple
CVE-2016-6288CRITICALCVSS 9.8v10.122016-09-20
CVE-2016-6288 [CRITICAL] CVE-2016-6288: macOS Sierra 10.12
Apple Security Update: About the security content of macOS Sierra 10.12
Product: macOS Sierra
Version: 10.12
CVE: CVE-2016-6288
Component: CVE-2016-6288
apple
CVE-2016-4702CRITICALCVSS 9.8v10.122016-09-20
CVE-2016-4702 [CRITICAL] CVE-2016-4702: macOS Sierra 10.12
Apple Security Update: About the security content of macOS Sierra 10.12
Product: macOS Sierra
Version: 10.12
CVE: CVE-2016-4702
Component: Audio
Impact: A remote attacker may be able to execute arbitrary code
Description: A memory corruption issue was addressed through improved memory handling.
apple
CVE-2016-6295CRITICALCVSS 9.8v10.122016-09-20
CVE-2016-6295 [CRITICAL] CVE-2016-6295: macOS Sierra 10.12
Apple Security Update: About the security content of macOS Sierra 10.12
Product: macOS Sierra
Version: 10.12
CVE: CVE-2016-6295
Component: CVE-2016-6295
apple
CVE-2016-6290CRITICALCVSS 9.8v10.122016-09-20
CVE-2016-6290 [CRITICAL] CVE-2016-6290: macOS Sierra 10.12
Apple Security Update: About the security content of macOS Sierra 10.12
Product: macOS Sierra
Version: 10.12
CVE: CVE-2016-6290
Component: CVE-2016-6290
apple
CVE-2016-4694CRITICALCVSS 9.1v10.122016-09-20
CVE-2016-4694 [CRITICAL] CVE-2016-4694: macOS Sierra 10.12
Apple Security Update: About the security content of macOS Sierra 10.12
Product: macOS Sierra
Version: 10.12
CVE: CVE-2016-4694
Component: About Apple security updates
Impact: A remote attacker may be able to proxy traffic through an arbitrary server
Description: An issue existed in the handling of the HTTP_PROXY environment variable. This issue was addressed by not setting the HTTP_PROXY environment variable from CGI.
apple
1 / 5Next →