Vulnerabilities > Apple > MAC OS X

DATE CVE VULNERABILITY TITLE RISK
2016-03-24 CVE-2016-1754 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
The kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1755.
local
low complexity
apple CWE-119
7.8
2016-03-24 CVE-2016-1753 Integer Overflow or Wraparound vulnerability in Apple products
Multiple integer overflows in the kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allow attackers to execute arbitrary code in a privileged context via a crafted app.
local
low complexity
apple CWE-190
7.8
2016-03-24 CVE-2016-1752 Improper Input Validation vulnerability in Apple products
The kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows attackers to cause a denial of service via a crafted app.
local
low complexity
apple CWE-20
5.5
2016-03-24 CVE-2016-1750 Use After Free vulnerability in Apple products
Use-after-free vulnerability in the kernel in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows attackers to execute arbitrary code in a privileged context via a crafted app.
local
low complexity
apple CWE-416
7.8
2016-03-24 CVE-2016-1749 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X
IOUSBFamily in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
local
low complexity
apple CWE-119
7.8
2016-03-24 CVE-2016-1748 Information Exposure vulnerability in Apple products
IOHIDFamily in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows attackers to obtain sensitive kernel memory-layout information via a crafted app.
local
low complexity
apple CWE-200
3.3
2016-03-24 CVE-2016-1747 Improper Input Validation vulnerability in Apple mac OS X
IOGraphics in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1746.
local
low complexity
apple CWE-20
7.8
2016-03-24 CVE-2016-1746 Improper Input Validation vulnerability in Apple mac OS X
IOGraphics in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1747.
local
low complexity
apple CWE-20
7.8
2016-03-24 CVE-2016-1745 Unspecified vulnerability in Apple mac OS X
IOFireWireFamily in Apple OS X before 10.11.4 allows local users to cause a denial of service (NULL pointer dereference) via unspecified vectors.
local
low complexity
apple
5.5
2016-03-24 CVE-2016-1744 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X
The Intel driver in the Graphics Drivers subsystem in Apple OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1743.
local
low complexity
apple CWE-119
7.8