Shodan
Vulnerabilities
Vulnerable Software
Apple:  >> Macos  >> 13.7.3  Security Vulnerabilities
CVE-2024-44155
A custom URL scheme handling issue was addressed with improved input validation. This issue is fixed in Safari 18, iOS 17.7.1 and iPadOS 17.7.1, macOS Sequoia 15, watchOS 11, iOS 18 and iPadOS 18. Maliciously crafted web content may violate iframe sandboxing policy.
CVSS Score
6.5
EPSS Score
0.001
Published
2024-10-28
CVE-2024-44174
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15. An attacker may be able to view restricted content from the lock screen.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-10-28
CVE-2024-44175
This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sequoia 15, macOS Sonoma 14.7.1. An app may be able to access sensitive user data.
CVSS Score
5.5
EPSS Score
0.003
Published
2024-10-28
CVE-2024-44203
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access a user's Photos Library.
CVSS Score
7.5
EPSS Score
0.001
Published
2024-10-28
CVE-2024-27849
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15. An app may be able to read sensitive location information.
CVSS Score
3.3
EPSS Score
0.0
Published
2024-10-28
CVE-2024-40792
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. A malicious app may be able to change network settings.
CVSS Score
3.3
EPSS Score
0.0
Published
2024-10-28
CVE-2024-40810
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Sonoma 14.6. An app may be able to cause a coprocessor crash.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-10-24
CVE-2024-44185
The issue was addressed with improved checks. This issue is fixed in tvOS 17.6, visionOS 1.3, Safari 17.6, watchOS 10.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. Processing maliciously crafted web content may lead to an unexpected process crash.
CVSS Score
5.5
EPSS Score
0.001
Published
2024-10-24
CVE-2024-44206
An issue in the handling of URL protocols was addressed with improved logic. This issue is fixed in tvOS 17.6, visionOS 1.3, Safari 17.6, watchOS 10.6, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6. A user may be able to bypass some web content restrictions.
CVSS Score
9.3
EPSS Score
0.004
Published
2024-10-24
CVE-2024-44187
A cross-origin issue existed with "iframe" elements. This was addressed with improved tracking of security origins. This issue is fixed in Safari 18, visionOS 2, watchOS 11, macOS Sequoia 15, iOS 18 and iPadOS 18, tvOS 18. A malicious website may exfiltrate data cross-origin.
CVSS Score
6.5
EPSS Score
0.001
Published
2024-09-17


Products
Pricing
Contact Us

Shodan ® - All rights reserved