10.15.7

DATE	CVE	VULNERABILITY TITLE	RISK
2020-12-08	CVE-2020-10012	Cross-site Scripting vulnerability in Apple mac OS X and Macos An access issue was addressed with improved access restrictions. network low complexity apple CWE-79	6.1
2020-12-08	CVE-2020-10010	Path Traversal vulnerability in Apple products A path handling issue was addressed with improved validation. local low complexity apple CWE-22	7.8
2020-12-08	CVE-2020-10009	Unspecified vulnerability in Apple mac OS X A logic issue was addressed with improved state management. local low complexity apple	5.5
2020-12-08	CVE-2020-10007	Unspecified vulnerability in Apple mac OS X A logic issue was addressed with improved state management. local low complexity apple	5.5
2020-12-08	CVE-2020-10006	Unspecified vulnerability in Apple mac OS X This issue was addressed with improved entitlements. local low complexity apple	5.5
2020-12-08	CVE-2020-10003	Link Following vulnerability in Apple products An issue existed within the path validation logic for symlinks. local low complexity apple CWE-59	7.8
2020-12-08	CVE-2020-10002	Unspecified vulnerability in Apple products A logic issue was addressed with improved state management. local low complexity apple	5.5
2020-12-03	CVE-2020-13524	Out-of-bounds Write vulnerability in multiple products An out-of-bounds memory corruption vulnerability exists in the way Pixar OpenUSD 20.05 uses SPECS data from binary USD files. network pixar apple CWE-787	4.3
2020-11-04	CVE-2020-8037	Allocation of Resources Without Limits or Throttling vulnerability in multiple products The ppp decapsulator in tcpdump 4.9.3 can be convinced to allocate a large amount of memory. network low complexity tcpdump debian fedoraproject apple CWE-770	7.5
2020-10-22	CVE-2020-9986	Unspecified vulnerability in Apple mac OS X A file access issue existed with certain home folder files. network apple	4.3