Shodan
Vulnerabilities
Vulnerable Software
Apple:  >> Mac Os X  >> 10.7.3  Security Vulnerabilities
CVE-2015-7803
The phar_get_entry_data function in ext/phar/util.c in PHP before 5.5.30 and 5.6.x before 5.6.14 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a .phar file with a crafted TAR archive entry in which the Link indicator references a file that does not exist.
CVSS Score
6.8
EPSS Score
0.191
Published
2015-12-11
CVE-2015-7112
The IOHIDFamily API in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2015-7111.
CVSS Score
9.3
EPSS Score
0.197
Published
2015-12-11
CVE-2015-7111
The IOHIDFamily API in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2015-7112.
CVSS Score
9.3
EPSS Score
0.017
Published
2015-12-11
CVE-2015-7110
The Disk Images component in Apple OS X before 10.11.2 and tvOS before 9.1 allows local users to gain privileges or cause a denial of service (memory corruption) via a crafted disk image.
CVSS Score
6.9
EPSS Score
0.002
Published
2015-12-11
CVE-2015-7109
IOAcceleratorFamily in Apple OS X before 10.11.2 and tvOS before 9.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVSS Score
9.3
EPSS Score
0.009
Published
2015-12-11
CVE-2015-7108
The Bluetooth HCI interface in Apple OS X before 10.11.2 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
CVSS Score
7.2
EPSS Score
0.003
Published
2015-12-11
CVE-2015-7107
QuickLook in Apple iOS before 9.2 and OS X before 10.11.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted iWork file.
CVSS Score
6.8
EPSS Score
0.024
Published
2015-12-11
CVE-2015-7106
The Intel Graphics Driver component in Apple OS X before 10.11.2 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
CVSS Score
7.2
EPSS Score
0.003
Published
2015-12-11
CVE-2015-7105
CoreGraphics in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font file.
CVSS Score
6.8
EPSS Score
0.025
Published
2015-12-11
CVE-2015-7094
CFNetwork HTTPProtocol in Apple iOS before 9.2 and OS X before 10.11.2 allows man-in-the-middle attackers to bypass the HSTS protection mechanism via a crafted URL.
CVSS Score
2.6
EPSS Score
0.003
Published
2015-12-11


Products
Pricing
Contact Us

Shodan ® - All rights reserved