Vulnerabilities > Apple > Critical

DATE CVE VULNERABILITY TITLE RISK
2019-12-18 CVE-2019-8641 Out-of-bounds Read vulnerability in Apple products
An out-of-bounds read was addressed with improved input validation.
network
low complexity
apple CWE-125
critical
 9.8
9.8
2019-12-18 CVE-2019-8617 Unspecified vulnerability in Apple Iphone OS
An access issue was addressed with additional sandbox restrictions.
network
low complexity
apple
critical
 9.6
9.6
2019-12-18 CVE-2019-8613 Use After Free vulnerability in Apple Iphone OS
A use after free issue was addressed with improved memory management.
network
low complexity
apple CWE-416
critical
 9.8
9.8
2019-12-18 CVE-2019-8600 Out-of-bounds Write vulnerability in Apple products
A memory corruption issue was addressed with improved input validation.
network
low complexity
apple CWE-787
critical
 9.8
9.8
2019-12-18 CVE-2019-8562 Out-of-bounds Write vulnerability in Apple products
A memory corruption issue was addressed with improved validation.
network
low complexity
apple CWE-787
critical
 9.6
9.6
2019-12-18 CVE-2019-8527 Classic Buffer Overflow vulnerability in Apple products
A buffer overflow was addressed with improved size validation.
network
low complexity
apple CWE-120
critical
 9.1
9.1
2019-12-18 CVE-2019-7290 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Apple Shortcuts
An access issue was addressed with additional sandbox restrictions.
network
low complexity
apple CWE-610
critical
 10.0
10
2019-07-29 CVE-2019-14379 SubTypeValidator.java in FasterXML jackson-databind before 2.9.9.2 mishandles default typing when ehcache is used (because of net.sf.ehcache.transaction.manager.DefaultTransactionManagerLookup), leading to remote code execution.
network
low complexity
fasterxml debian netapp fedoraproject redhat oracle apple
critical
 9.8
9.8
2019-04-03 CVE-2018-4367 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Iphone OS
A memory corruption issue was addressed with improved input validation.
network
low complexity
apple CWE-119
critical
 9.8
9.8
2019-04-03 CVE-2018-4353 Improper Input Validation vulnerability in Apple mac OS X
A configuration issue was addressed with additional restrictions.
network
low complexity
apple CWE-20
critical
 9.8
9.8