Max CVSS 10.0 Min CVSS 1.9 Total Count2
IDCVSSSummaryLast (major) updatePublished
CVE-2015-1098 6.8
iWork in Apple iOS before 8.3 and Apple OS X before 10.10.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted iWork file.
27-09-2019 - 18:42 10-04-2015 - 14:59
CVE-2015-1095 7.2
IOHIDFamily in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows physically proximate attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted HID device.
08-03-2019 - 16:06 10-04-2015 - 14:59
CVE-2015-1096 1.9
IOHIDFamily in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows attackers to obtain sensitive information about kernel memory via a crafted app.
08-03-2019 - 16:06 10-04-2015 - 14:59
CVE-2015-1099 4.0
Race condition in the setreuid system-call implementation in the kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows attackers to cause a denial of service via a crafted app.
08-03-2019 - 16:06 10-04-2015 - 14:59
CVE-2015-1100 5.4
The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows attackers to cause a denial of service (out-of-bounds memory access) or obtain sensitive memory-content information via a crafted app.
08-03-2019 - 16:06 10-04-2015 - 14:59
CVE-2015-1101 6.9
The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
08-03-2019 - 16:06 10-04-2015 - 14:59
CVE-2015-1102 7.1
The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 does not properly handle TCP headers, which allows man-in-the-middle attackers to cause a denial of service via unspecified vectors.
08-03-2019 - 16:06 10-04-2015 - 14:59
CVE-2015-1103 7.5
The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 makes routing changes in response to ICMP_REDIRECT messages, which allows remote attackers to cause a denial of service (network outage) or obtain sensitive packet
08-03-2019 - 16:06 10-04-2015 - 14:59
CVE-2015-1104 5.0
The kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 does not properly determine whether an IPv6 packet had a local origin, which allows remote attackers to bypass an intended network-filtering protection mechanism v
08-03-2019 - 16:06 10-04-2015 - 14:59
CVE-2015-1105 5.0
The TCP implementation in the kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 does not properly implement the Urgent (aka out-of-band data) mechanism, which allows remote attackers to cause a denial of service via c
08-03-2019 - 16:06 10-04-2015 - 14:59
CVE-2015-1117 6.9
The (1) setreuid and (2) setregid system-call implementations in the kernel in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 do not properly perform privilege drops, which makes it easier for attackers to execute code with
08-03-2019 - 16:06 10-04-2015 - 14:59
CVE-2015-1118 5.0
libnetcore in Apple iOS before 8.3, Apple OS X before 10.10.3, and Apple TV before 7.2 allows attackers to cause a denial of service (memory corruption and application crash) via a crafted configuration profile.
08-03-2019 - 16:06 10-04-2015 - 14:59
CVE-2015-1137 7.2
The NVIDIA graphics driver in Apple OS X before 10.10.3 allows local users to gain privileges or cause a denial of service (NULL pointer dereference) via an unspecified IOService userclient type. <a href="http://cwe.mitre.org/data/definitions/476.htm
31-01-2019 - 19:48 10-04-2015 - 14:59
CVE-2015-1139 6.8
ImageIO in Apple OS X before 10.10.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted .sgi file.
31-01-2019 - 19:48 10-04-2015 - 14:59
CVE-2015-1135 7.2
fontd in Apple Type Services (ATS) in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-1131, CVE-2015-1132, CVE-2015-1133, and CVE-2015-1134.
31-01-2019 - 19:46 10-04-2015 - 14:59
CVE-2015-1136 6.8
Use-after-free vulnerability in CoreAnimation in Apple OS X before 10.10.3 allows remote attackers to execute arbitrary code by leveraging improper use of a mutex. <a href="http://cwe.mitre.org/data/definitions/416.html" rel="nofollow">CWE-416: Use A
31-01-2019 - 19:46 10-04-2015 - 14:59
CVE-2015-1132 10.0
fontd in Apple Type Services (ATS) in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-1131, CVE-2015-1133, CVE-2015-1134, and CVE-2015-1135.
31-01-2019 - 19:45 10-04-2015 - 14:59
CVE-2015-1133 7.2
fontd in Apple Type Services (ATS) in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-1131, CVE-2015-1132, CVE-2015-1134, and CVE-2015-1135.
31-01-2019 - 19:45 10-04-2015 - 14:59
CVE-2015-1134 7.2
fontd in Apple Type Services (ATS) in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-1131, CVE-2015-1132, CVE-2015-1133, and CVE-2015-1135.
31-01-2019 - 19:45 10-04-2015 - 14:59
CVE-2015-1131 7.2
fontd in Apple Type Services (ATS) in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-1132, CVE-2015-1133, CVE-2015-1134, and CVE-2015-1135.
31-01-2019 - 19:44 10-04-2015 - 14:59
CVE-2015-1140 7.2
Buffer overflow in IOHIDFamily in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors.
31-01-2019 - 19:39 10-04-2015 - 14:59
CVE-2015-1143 7.2
LaunchServices in Apple OS X before 10.10.3 allows local users to gain privileges via a crafted localized string, related to a "type confusion" issue. <a href="http://cwe.mitre.org/data/definitions/843.html" rel="nofollow">CWE-843: Access of Resource
31-01-2019 - 19:27 10-04-2015 - 14:59
CVE-2015-1145 1.9
The Code Signing implementation in Apple OS X before 10.10.3 does not properly validate signatures, which allows local users to bypass intended access restrictions via a crafted bundle, a different vulnerability than CVE-2015-1146.
31-01-2019 - 19:27 10-04-2015 - 14:59
CVE-2015-1146 1.9
The Code Signing implementation in Apple OS X before 10.10.3 does not properly validate signatures, which allows local users to bypass intended access restrictions via a crafted bundle, a different vulnerability than CVE-2015-1145.
31-01-2019 - 19:25 10-04-2015 - 14:59
CVE-2015-1147 5.0
Open Directory Client in Apple OS X before 10.10.3 sends unencrypted password-change requests in certain circumstances involving missing certificates, which allows remote attackers to obtain sensitive information by sniffing the network.
31-01-2019 - 19:24 10-04-2015 - 14:59
CVE-2015-1093 6.8
FontParser in Apple iOS before 8.3 and Apple OS X before 10.10.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file.
31-01-2019 - 19:11 10-04-2015 - 14:59
CVE-2015-1088 6.8
CFURL in Apple iOS before 8.3 and Apple OS X before 10.10.3 does not properly validate URLs, which allows remote attackers to execute arbitrary code via a crafted web site.
03-01-2017 - 02:59 10-04-2015 - 14:59
CVE-2015-1089 5.0
CFNetwork in Apple iOS before 8.3 and Apple OS X before 10.10.3 does not properly handle cookies during processing of redirects in HTTP responses, which allows remote attackers to bypass the Same Origin Policy via a crafted web site.
03-01-2017 - 02:59 10-04-2015 - 14:59
CVE-2015-1091 4.3
The CFNetwork Session component in Apple iOS before 8.3 and Apple OS X before 10.10.3 does not properly handle request headers during processing of redirects in HTTP responses, which allows remote attackers to bypass the Same Origin Policy via a craf
03-01-2017 - 02:59 10-04-2015 - 14:59
CVE-2015-1148 5.0
Screen Sharing in Apple OS X before 10.10.3 stores the password of a user in a log file, which might allow context-dependent attackers to obtain sensitive information by reading this file.
17-09-2015 - 18:43 10-04-2015 - 14:59
CVE-2015-1144 7.2
Buffer overflow in the UniformTypeIdentifiers component in Apple OS X before 10.10.3 allows local users to gain privileges via a crafted Uniform Type Identifier.
17-09-2015 - 18:42 10-04-2015 - 14:59
CVE-2015-1141 4.9
The mach_vm_read functionality in the kernel in Apple OS X before 10.10.3 allows local users to cause a denial of service (system crash) via unspecified vectors.
17-09-2015 - 18:39 10-04-2015 - 14:59
CVE-2015-1142 2.1
LaunchServices in Apple OS X before 10.10.3 allows local users to cause a denial of service (Finder crash) via crafted localization data.
17-09-2015 - 18:39 10-04-2015 - 14:59
CVE-2015-1138 4.9
Hypervisor in Apple OS X before 10.10.3 allows local users to cause a denial of service via unspecified vectors.
17-09-2015 - 17:47 10-04-2015 - 14:59
CVE-2015-1130 7.2
The XPC implementation in Admin Framework in Apple OS X before 10.10.3 allows local users to bypass authentication and obtain admin privileges via unspecified vectors.
17-09-2015 - 17:41 10-04-2015 - 14:59
Back to Top Mark selected
Back to Top