Max CVSS | 10.0 | Min CVSS | 1.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2015-1139 | 6.8 |
ImageIO in Apple OS X before 10.10.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted .sgi file.
|
31-01-2019 - 19:48 | 10-04-2015 - 14:59 | |
CVE-2015-1137 | 7.2 |
The NVIDIA graphics driver in Apple OS X before 10.10.3 allows local users to gain privileges or cause a denial of service (NULL pointer dereference) via an unspecified IOService userclient type. <a href="http://cwe.mitre.org/data/definitions/476.htm
|
31-01-2019 - 19:48 | 10-04-2015 - 14:59 | |
CVE-2015-1135 | 7.2 |
fontd in Apple Type Services (ATS) in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-1131, CVE-2015-1132, CVE-2015-1133, and CVE-2015-1134.
|
31-01-2019 - 19:46 | 10-04-2015 - 14:59 | |
CVE-2015-1136 | 6.8 |
Use-after-free vulnerability in CoreAnimation in Apple OS X before 10.10.3 allows remote attackers to execute arbitrary code by leveraging improper use of a mutex. <a href="http://cwe.mitre.org/data/definitions/416.html" rel="nofollow">CWE-416: Use A
|
31-01-2019 - 19:46 | 10-04-2015 - 14:59 | |
CVE-2015-1133 | 7.2 |
fontd in Apple Type Services (ATS) in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-1131, CVE-2015-1132, CVE-2015-1134, and CVE-2015-1135.
|
31-01-2019 - 19:45 | 10-04-2015 - 14:59 | |
CVE-2015-1132 | 10.0 |
fontd in Apple Type Services (ATS) in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-1131, CVE-2015-1133, CVE-2015-1134, and CVE-2015-1135.
|
31-01-2019 - 19:45 | 10-04-2015 - 14:59 | |
CVE-2015-1134 | 7.2 |
fontd in Apple Type Services (ATS) in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-1131, CVE-2015-1132, CVE-2015-1133, and CVE-2015-1135.
|
31-01-2019 - 19:45 | 10-04-2015 - 14:59 | |
CVE-2015-1131 | 7.2 |
fontd in Apple Type Services (ATS) in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-1132, CVE-2015-1133, CVE-2015-1134, and CVE-2015-1135.
|
31-01-2019 - 19:44 | 10-04-2015 - 14:59 | |
CVE-2015-1140 | 7.2 |
Buffer overflow in IOHIDFamily in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors.
|
31-01-2019 - 19:39 | 10-04-2015 - 14:59 | |
CVE-2015-1145 | 1.9 |
The Code Signing implementation in Apple OS X before 10.10.3 does not properly validate signatures, which allows local users to bypass intended access restrictions via a crafted bundle, a different vulnerability than CVE-2015-1146.
|
31-01-2019 - 19:27 | 10-04-2015 - 14:59 | |
CVE-2015-1143 | 7.2 |
LaunchServices in Apple OS X before 10.10.3 allows local users to gain privileges via a crafted localized string, related to a "type confusion" issue. <a href="http://cwe.mitre.org/data/definitions/843.html" rel="nofollow">CWE-843: Access of Resource
|
31-01-2019 - 19:27 | 10-04-2015 - 14:59 | |
CVE-2015-1146 | 1.9 |
The Code Signing implementation in Apple OS X before 10.10.3 does not properly validate signatures, which allows local users to bypass intended access restrictions via a crafted bundle, a different vulnerability than CVE-2015-1145.
|
31-01-2019 - 19:25 | 10-04-2015 - 14:59 | |
CVE-2015-1147 | 5.0 |
Open Directory Client in Apple OS X before 10.10.3 sends unencrypted password-change requests in certain circumstances involving missing certificates, which allows remote attackers to obtain sensitive information by sniffing the network.
|
31-01-2019 - 19:24 | 10-04-2015 - 14:59 | |
CVE-2015-7007 | 7.5 |
Script Editor in Apple OS X before 10.11.1 allows remote attackers to bypass an intended user-confirmation requirement for AppleScript execution via unspecified vectors.
|
24-12-2016 - 02:59 | 23-10-2015 - 21:59 | |
CVE-2015-5889 | 7.2 |
rsh in the remote_cmds component in Apple OS X before 10.11 allows local users to obtain root privileges via vectors involving environment variables.
|
24-12-2016 - 02:59 | 09-10-2015 - 05:59 | |
CVE-2015-1148 | 5.0 |
Screen Sharing in Apple OS X before 10.10.3 stores the password of a user in a log file, which might allow context-dependent attackers to obtain sensitive information by reading this file.
|
17-09-2015 - 18:43 | 10-04-2015 - 14:59 | |
CVE-2015-1144 | 7.2 |
Buffer overflow in the UniformTypeIdentifiers component in Apple OS X before 10.10.3 allows local users to gain privileges via a crafted Uniform Type Identifier.
|
17-09-2015 - 18:42 | 10-04-2015 - 14:59 | |
CVE-2015-1142 | 2.1 |
LaunchServices in Apple OS X before 10.10.3 allows local users to cause a denial of service (Finder crash) via crafted localization data.
|
17-09-2015 - 18:39 | 10-04-2015 - 14:59 | |
CVE-2015-1141 | 4.9 |
The mach_vm_read functionality in the kernel in Apple OS X before 10.10.3 allows local users to cause a denial of service (system crash) via unspecified vectors.
|
17-09-2015 - 18:39 | 10-04-2015 - 14:59 | |
CVE-2015-1138 | 4.9 |
Hypervisor in Apple OS X before 10.10.3 allows local users to cause a denial of service via unspecified vectors.
|
17-09-2015 - 17:47 | 10-04-2015 - 14:59 | |
CVE-2015-1130 | 7.2 |
The XPC implementation in Admin Framework in Apple OS X before 10.10.3 allows local users to bypass authentication and obtain admin privileges via unspecified vectors.
|
17-09-2015 - 17:41 | 10-04-2015 - 14:59 |