Vulnerabilities > Apple > MAC OS X > 10.12.6

DATE CVE VULNERABILITY TITLE RISK
2020-02-27 CVE-2020-3870 Out-of-bounds Read vulnerability in Apple products
An out-of-bounds read was addressed with improved input validation.
network
apple CWE-125
6.8
2020-02-27 CVE-2020-3866 Incorrect Authorization vulnerability in Apple mac OS X
This was addressed with additional checks by Gatekeeper on files mounted through a network share.
network
apple CWE-863
4.3
2020-02-27 CVE-2020-3857 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
A memory corruption issue was addressed with improved memory handling.
local
low complexity
apple CWE-119
7.2
2020-02-27 CVE-2020-3856 Improper Input Validation vulnerability in Apple products
A memory corruption issue was addressed with improved input validation.
network
apple CWE-20
critical
9.3
2020-02-27 CVE-2020-3854 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X
A memory corruption issue was addressed with improved memory handling.
network
apple CWE-119
critical
9.3
2020-02-27 CVE-2020-3853 Type Confusion vulnerability in Apple products
A type confusion issue was addressed with improved memory handling.
network
apple CWE-843
critical
9.3
2020-02-27 CVE-2020-3846 XML Injection (aka Blind XPath Injection) vulnerability in Apple products
A buffer overflow was addressed with improved size validation.
network
apple CWE-91
6.8
2020-02-27 CVE-2020-3845 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X
A memory corruption issue was addressed with improved memory handling.
network
apple CWE-119
critical
9.3
2020-02-27 CVE-2020-3842 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
A memory corruption issue was addressed with improved memory handling.
network
apple CWE-119
critical
9.3
2020-02-27 CVE-2020-3840 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An off by one issue existed in the handling of racoon configuration files.
network
apple CWE-119
6.8