Shodan
Vulnerabilities
Vulnerable Software
Apple:  >> Mac Os X  >> 10.0.0  Security Vulnerabilities
CVE-2016-1773
The code-signing subsystem in Apple OS X before 10.11.4 does not properly verify file ownership, which allows local users to determine the existence of arbitrary files via unspecified vectors.
CVSS Score
3.3
EPSS Score
0.001
Published
2016-03-24
CVE-2016-1770
The Reminders component in Apple OS X before 10.11.4 allows attackers to bypass an intended user-confirmation requirement and trigger a dialing action via a tel: URL.
CVSS Score
6.5
EPSS Score
0.002
Published
2016-03-24
CVE-2016-1769
QuickTime in Apple OS X before 10.11.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Photoshop file.
CVSS Score
7.8
EPSS Score
0.046
Published
2016-03-24
CVE-2016-1768
QuickTime in Apple OS X before 10.11.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FlashPix image, a different vulnerability than CVE-2016-1767.
CVSS Score
7.8
EPSS Score
0.086
Published
2016-03-24
CVE-2016-1767
QuickTime in Apple OS X before 10.11.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FlashPix image, a different vulnerability than CVE-2016-1768.
CVSS Score
7.8
EPSS Score
0.046
Published
2016-03-24
CVE-2016-1764
The Content Security Policy (CSP) implementation in Messages in Apple OS X before 10.11.4 allows remote attackers to obtain sensitive information via a javascript: URL.
CVSS Score
4.3
EPSS Score
0.067
Published
2016-03-24
CVE-2016-1762
The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.
CVSS Score
8.1
EPSS Score
0.073
Published
2016-03-24
CVE-2016-1761
libxml2 in Apple iOS before 9.3, OS X before 10.11.4, and watchOS before 2.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.
CVSS Score
9.8
EPSS Score
0.11
Published
2016-03-24
CVE-2016-1759
The kernel in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVSS Score
7.8
EPSS Score
0.002
Published
2016-03-24
CVE-2016-1758
The kernel in Apple iOS before 9.3 and OS X before 10.11.4 allows attackers to obtain sensitive memory-layout information or cause a denial of service (out-of-bounds read) via a crafted app.
CVSS Score
3.3
EPSS Score
0.003
Published
2016-03-24


Products
Pricing
Contact Us

Shodan ® - All rights reserved