Shodan
Vulnerabilities
Vulnerable Software
Apple:  >> Mac Os X  >> 10.7.3  Security Vulnerabilities
CVE-2015-5866
IOHIDFamily in Apple OS X before 10.11 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
CVSS Score
9.3
EPSS Score
0.008
Published
2015-10-09
CVE-2015-5865
IOGraphics in Apple OS X before 10.11 allows attackers to obtain sensitive kernel memory-layout information via a crafted app.
CVSS Score
4.3
EPSS Score
0.003
Published
2015-10-09
CVE-2015-5864
IOAudioFamily in Apple OS X before 10.11 allows local users to obtain sensitive kernel memory-layout information via unspecified vectors.
CVSS Score
2.1
EPSS Score
0.001
Published
2015-10-09
CVE-2015-5854
The backup implementation in Time Machine in Apple OS X before 10.11 allows local users to obtain access to keychain items via unspecified vectors.
CVSS Score
2.1
EPSS Score
0.001
Published
2015-10-09
CVE-2015-5853
AirScan in Apple OS X before 10.11 allows man-in-the-middle attackers to obtain eSCL packet payload data via unspecified vectors.
CVSS Score
3.3
EPSS Score
0.001
Published
2015-10-09
CVE-2015-5849
The filtering implementation in AppleEvents in Apple OS X before 10.11 mishandles attempts to send events to a different user, which allows attackers to bypass intended access restrictions by leveraging a screen-sharing connection.
CVSS Score
6.8
EPSS Score
0.004
Published
2015-10-09
CVE-2015-5836
Apple Online Store Kit in Apple OS X before 10.11 improperly validates iCloud keychain item ACLs, which allows attackers to obtain access to keychain items via a crafted app.
CVSS Score
4.3
EPSS Score
0.003
Published
2015-10-09
CVE-2015-5833
The Login Window component in Apple OS X before 10.11 does not ensure that the screen is locked at the intended time, which allows physically proximate attackers to obtain access by visiting an unattended workstation.
CVSS Score
7.2
EPSS Score
0.001
Published
2015-10-09
CVE-2015-5830
The Intel Graphics Driver component in Apple OS X before 10.11 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2015-5877.
CVSS Score
7.2
EPSS Score
0.001
Published
2015-10-09
CVE-2015-3785
The Telephony component in Apple OS X before 10.11, when the Continuity feature is enabled, allows local users to bypass intended telephone-call restrictions via unspecified vectors.
CVSS Score
1.9
EPSS Score
0.001
Published
2015-10-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved