| Max CVSS | 6.8 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-4459 | 6.8 |
Use-after-free vulnerability in WebKit, as used in Apple OS X before 10.10.1, allows remote attackers to execute arbitrary code via crafted page objects in an HTML document. <a href="http://cwe.mitre.org/data/definitions/416.html" rel="nofollow">CWE-
|
16-07-2019 - 12:22 | 18-11-2014 - 11:59 | |
| CVE-2014-4453 | 5.0 |
Apple iOS before 8.1.1 and OS X before 10.10.1 include location data during establishment of a Spotlight Suggestions server connection by Spotlight or Safari, which might allow remote attackers to obtain sensitive information via unspecified vectors.
|
29-08-2017 - 01:35 | 18-11-2014 - 11:59 | |
| CVE-2014-4458 | 5.0 |
The "System Profiler About This Mac" component in Apple OS X before 10.10.1 includes extraneous cookie data in system-model requests, which might allow remote attackers to obtain sensitive information via unspecified vectors.
|
29-08-2017 - 01:35 | 18-11-2014 - 11:59 | |
| CVE-2014-4460 | 2.1 |
CFNetwork in Apple iOS before 8.1.1 and OS X before 10.10.1 does not properly clear the browsing cache upon a transition out of private-browsing mode, which makes it easier for physically proximate attackers to obtain sensitive information by reading
|
29-08-2017 - 01:35 | 18-11-2014 - 11:59 |