Vulnerabilities > Apple > MAC OS X > 10.10.0

DATE CVE VULNERABILITY TITLE RISK
2019-03-04 CVE-2019-6235 Out-of-bounds Write vulnerability in Apple products
A memory corruption issue was addressed with improved validation.
network
low complexity
apple CWE-787
7.5
2019-02-18 CVE-2019-8906 Out-of-bounds Read vulnerability in multiple products
do_core_note in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused.
3.6
2019-01-11 CVE-2018-4277 Improper Input Validation vulnerability in Apple products
In iOS before 11.4.1, watchOS before 4.3.2, tvOS before 11.4.1, Safari before 11.1.1, macOS High Sierra before 10.13.6, a spoofing issue existed in the handling of URLs.
network
low complexity
apple CWE-20
5.0
2019-01-11 CVE-2018-4258 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X
In macOS High Sierra before 10.13.5, a buffer overflow was addressed with improved bounds checking.
network
low complexity
apple CWE-119
critical
10.0
2019-01-11 CVE-2018-4257 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X
In macOS High Sierra before 10.13.5, a buffer overflow was addressed with improved size validation.
network
low complexity
apple CWE-119
critical
10.0
2019-01-11 CVE-2018-4256 Out-of-bounds Read vulnerability in Apple mac OS X
In macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation.
local
low complexity
apple CWE-125
2.1
2019-01-11 CVE-2018-4255 Out-of-bounds Read vulnerability in Apple mac OS X
In macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation.
local
low complexity
apple CWE-125
2.1
2019-01-11 CVE-2018-4254 Improper Input Validation vulnerability in Apple mac OS X
In macOS High Sierra before 10.13.5, an input validation issue existed in the kernel.
network
low complexity
apple CWE-20
critical
10.0
2019-01-11 CVE-2018-4217 Information Exposure vulnerability in Apple mac OS X
In macOS High Sierra before 10.13.5, a privacy issue in the handling of Open Directory records was addressed with improved indexing.
network
low complexity
apple CWE-200
5.0
2019-01-11 CVE-2018-4185 Information Exposure vulnerability in Apple products
In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS before High Sierra 10.13.4, an information disclosure issue existed in the transition of program state.
network
low complexity
apple CWE-200
5.0