Vulnerabilities > Apple

DATE CVE VULNERABILITY TITLE RISK
2019-01-11 CVE-2018-4183 Unspecified vulnerability in Apple mac OS X
In macOS High Sierra before 10.13.5, an access issue was addressed with additional sandbox restrictions.
local
low complexity
apple
8.2
8.2
2019-01-11 CVE-2018-4182 Unspecified vulnerability in Apple mac OS X
In macOS High Sierra before 10.13.5, an access issue was addressed with additional sandbox restrictions on CUPS.
local
low complexity
apple
8.2
8.2
2019-01-11 CVE-2018-4181 In macOS High Sierra before 10.13.5, an issue existed in CUPS.
local
low complexity
apple canonical debian
5.5
5.5
2019-01-11 CVE-2018-4180 In macOS High Sierra before 10.13.5, an issue existed in CUPS.
local
low complexity
apple debian canonical
7.8
7.8
2019-01-11 CVE-2018-4179 Information Exposure vulnerability in Apple mac OS X
In macOS High Sierra before 10.13.4, there was an issue with the handling of smartcard PINs.
local
low complexity
apple CWE-200
5.5
5.5
2019-01-11 CVE-2018-4169 Out-of-bounds Read vulnerability in Apple mac OS X 10.13.0/10.13.1/10.13.2
In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, an out-of-bounds read was addressed with improved input validation.
network
low complexity
apple CWE-125
critical
 9.8
9.8
2019-01-11 CVE-2018-4147 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
In iCloud for Windows before 7.3, Safari before 11.0.3, iTunes before 12.7.3 for Windows, and iOS before 11.2.5, multiple memory corruption issues exist and were addressed with improved memory handling.
network
low complexity
apple CWE-119
critical
 9.8
9.8
2019-01-11 CVE-2017-2411 7PK - Security Features vulnerability in Apple Iphone OS
In iOS before 11.2, exchange rates were retrieved from HTTP rather than HTTPS.
network
high complexity
apple CWE-254
5.9
5.9
2019-01-11 CVE-2017-13891 Improper Input Validation vulnerability in Apple Iphone OS
In iOS before 11.2, an inconsistent user interface issue was addressed through improved state management.
network
low complexity
apple CWE-20
6.5
6.5
2019-01-11 CVE-2017-13889 Improper Authentication vulnerability in Apple mac OS X 10.13.0/10.13.1/10.13.2
In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, a logic error existed in the validation of credentials.
network
low complexity
apple CWE-287
critical
 9.8
9.8