Every CVE whose affected-product data names Apple Mac Os X, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (200)
CVE-2015-3062 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on…
CVE-2015-3063 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on…
CVE-2010-0055 — CVSS 10.0 (critical): xar in Apple Mac OS X 10.5.8 does not properly validate package signatures, which allows attackers to have an unspecified impact via a…
CVE-2007-3828 — CVSS 10.0 (critical): Unspecified vulnerability in mDNSResponder in Apple Mac OS X allows remote attackers to execute arbitrary code via unspecified vectors, a…
CVE-2015-3064 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on…
CVE-2015-3065 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on…
CVE-2015-3066 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on…
CVE-2015-3067 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on…
CVE-2007-2390 — CVSS 10.0 (critical): Buffer overflow in iChat in Apple Mac OS X 10.3.9 and 10.4.9 allows remote attackers to cause a denial of service (application termination)…
CVE-2015-3068 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on…
CVE-2015-3069 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on…
CVE-2015-3070 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2010-0508 — CVSS 10.0 (critical): Mail in Apple Mac OS X before 10.6.3 does not disable the filter rules associated with a deleted mail account, which has unspecified impact…
CVE-2003-0694 — CVSS 10.0 (critical): The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated…
CVE-2015-3071 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on…
CVE-2014-1376 — CVSS 10.0 (critical): Intel Compute in Apple OS X before 10.9.4 does not properly restrict an unspecified OpenCL API call, which allows attackers to execute…
CVE-2015-3072 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on…
CVE-2019-6235 — CVSS 10.0 (critical): A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2…
CVE-2007-0746 — CVSS 10.0 (critical): Heap-based buffer overflow in the VideoConference framework in Apple Mac OS X 10.3.9 through 10.4.9 allows remote attackers to execute…
CVE-2015-3073 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on…
CVE-2015-3074 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on…
CVE-2015-3075 — CVSS 10.0 (critical): Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers…
CVE-2014-1377 — CVSS 10.0 (critical): Array index error in IOAcceleratorFamily in Apple OS X before 10.9.4 allows attackers to execute arbitrary code via a crafted application.
CVE-2015-3076 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2007-0462 — CVSS 10.0 (critical): The _GetSrcBits32ARGB function in Apple QuickDraw, as used by Quicktime 7.1.3 and other applications on Mac OS X 10.4.8 and earlier, allows…
CVE-2014-1379 — CVSS 10.0 (critical): Graphics Drivers in Apple OS X before 10.9.4 allows attackers to gain privileges or cause a denial of service (NULL pointer dereference and…
CVE-2015-5887 — CVSS 10.0 (critical): The TLS Handshake Protocol implementation in Secure Transport in Apple OS X before 10.11 accepts a Certificate Request message within a…
CVE-2015-5903 — CVSS 10.0 (critical): The kernel in Apple iOS before 9 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified…
CVE-2015-5922 — CVSS 10.0 (critical): Unspecified vulnerability in International Components for Unicode (ICU) before 53.1.0, as used in Apple OS X before 10.11 and watchOS…
CVE-2014-1381 — CVSS 10.0 (critical): Thunderbolt in Apple OS X before 10.9.4 does not properly restrict IOThunderBoltController API calls, which allows attackers to execute…
CVE-2007-0236 — CVSS 10.0 (critical): Double free vulnerability in the _ATPsndrsp function in Apple Mac OS X 10.4.8, and possibly other versions, allows remote attackers to…
CVE-2008-3529 — CVSS 10.0 (critical): Heap-based buffer overflow in the xmlParseAttValueComplex function in parser.c in libxml2 before 2.7.0 allows context-dependent attackers…
CVE-2008-1030 — CVSS 10.0 (critical): Integer overflow in the CFDataReplaceBytes function in the CFData API in CoreFoundation in Apple Mac OS X before 10.5.3 allows…
CVE-2018-4310 — CVSS 10.0 (critical): An access issue was addressed with additional sandbox restrictions. This issue affected versions prior to iOS 12, macOS Mojave 10.14.
CVE-2010-1119 — CVSS 10.0 (critical): Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Safari before 4.1 on Mac OS X…
CVE-2014-4376 — CVSS 10.0 (critical): IOKit in IOAcceleratorFamily in Apple OS X before 10.9.5 allows attackers to execute arbitrary code in a privileged context or cause a…
CVE-2014-4393 — CVSS 10.0 (critical): Buffer overflow in the shader compiler in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 allows remote attackers to…
CVE-2009-0846 — CVSS 10.0 (critical): The asn1_decode_generaltime function in lib/krb5/asn.1/asn1_decode.c in the ASN.1 GeneralizedTime decoder in MIT Kerberos 5 (aka krb5)…
CVE-2014-4486 — CVSS 10.0 (critical): IOAcceleratorFamily in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 does not properly handle resource lists…
CVE-2005-2511 — CVSS 10.0 (critical): Unknown vulnerability in Mac OS X 10.4.2 and earlier, when using Kerberos authentication with LDAP, allows attackers to gain access to a…
CVE-2014-1314 — CVSS 10.0 (critical): WindowServer in Apple OS X through 10.9.2 does not prevent session creation by a sandboxed application, which allows attackers to bypass…
CVE-2014-4487 — CVSS 10.0 (critical): Buffer overflow in IOHIDFamily in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 allows attackers to execute…
CVE-2014-4488 — CVSS 10.0 (critical): IOHIDFamily in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 does not properly validate resource-queue…
CVE-2014-4489 — CVSS 10.0 (critical): IOHIDFamily in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 does not properly initialize event queues…
CVE-2014-4495 — CVSS 10.0 (critical): The kernel in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 does not enforce the read-only attribute of a…
CVE-2003-1009 — CVSS 10.0 (critical): Directory Services in Apple Mac OS X 10.0.2, 10.0.3, 10.2.8, 10.3.2 and Apple Mac OS X Server 10.2 through 10.3.2 accepts authentication…
CVE-2014-4497 — CVSS 10.0 (critical): Integer signedness error in IOBluetoothFamily in the Bluetooth implementation in Apple OS X before 10.10 allows attackers to execute…
CVE-2018-4229 — CVSS 10.0 (critical): An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "Grand Central Dispatch"…
CVE-2015-6988 — CVSS 10.0 (critical): The kernel in Apple iOS before 9.1 and OS X before 10.11.1 does not initialize an unspecified data structure, which allows remote attackers…
CVE-2008-4220 — CVSS 10.0 (critical): Integer overflow in the inet_net_pton API in Libsystem in Apple Mac OS X before 10.5.6 allows context-dependent attackers to execute…
CVE-2007-0117 — CVSS 10.0 (critical): DiskManagementTool in the DiskManagement.framework 92.29 on Mac OS X 10.4.8 does not properly validate Bill of Materials (BOM) files, which…
CVE-2015-7071 — CVSS 10.0 (critical): The File Bookmark component in Apple OS X before 10.11.2 allows attackers to bypass a sandbox protection mechanism for app scoped bookmarks…
CVE-2014-1318 — CVSS 10.0 (critical): The Intel Graphics Driver in Apple OS X through 10.9.2 does not properly validate a certain pointer, which allows attackers to execute…
CVE-2008-4221 — CVSS 10.0 (critical): The strptime API in Libsystem in Apple Mac OS X before 10.5.6 allows context-dependent attackers to cause a denial of service (memory…
CVE-2014-1356 — CVSS 10.0 (critical): Heap-based buffer overflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to…
CVE-2014-8445 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2006-6900 — CVSS 10.0 (critical): Unspecified vulnerability in the Bluetooth stack in Apple Mac OS 10.4 has unknown impact and attack vectors, related to an "implementation…
CVE-2002-1367 — CVSS 10.0 (critical): Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allows remote attackers to add printers without authentication via a certain UDP…
CVE-2015-8659 — CVSS 10.0 (critical): The idle stream handling in nghttp2 before 1.6.0 allows attackers to have unspecified impact via unknown vectors, aka a heap-use-after-free…
CVE-2018-4091 — CVSS 10.0 (critical): An issue was discovered in certain Apple products. macOS before 10.13.3 is affected. The issue involves the "Sandbox" component. It allows…
CVE-2006-4404 — CVSS 10.0 (critical): The Installer application in Apple Mac OS X 10.4.8 and earlier, when used by a user with Admin credentials, does not authenticate the user…
CVE-2006-3498 — CVSS 10.0 (critical): Stack-based buffer overflow in bootpd in the DHCP component for Apple Mac OS X 10.3.9 and 10.4.7 allows remote attackers to execute…
CVE-2009-1236 — CVSS 10.0 (critical): Heap-based buffer overflow in the AppleTalk networking stack in XNU 1228.3.13 and earlier on Apple Mac OS X 10.5.6 and earlier allows…
CVE-2008-4212 — CVSS 10.0 (critical): Unspecified vulnerability in rlogind in the rlogin component in Mac OS X 10.4.11 and 10.5.5 applies hosts.equiv entries to root despite…
CVE-2004-0090 — CVSS 10.0 (critical): Unknown vulnerability in Windows File Sharing for Mac OS X 10.1.5 through 10.3.2 does not "shutdown properly," which has unknown impact and…
CVE-2002-1369 — CVSS 10.0 (critical): jobs.c in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 does not properly use the strncat function call when processing the…
CVE-2014-1357 — CVSS 10.0 (critical): Heap-based buffer overflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to…
CVE-2014-8446 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2014-8447 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2014-8449 — CVSS 10.0 (critical): Integer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to execute…
CVE-2014-8454 — CVSS 10.0 (critical): Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers…
CVE-2014-8455 — CVSS 10.0 (critical): Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers…
CVE-2004-0429 — CVSS 10.0 (critical): Unknown vulnerability related to "the handling of large requests" in RAdmin for Apple Mac OS X 10.3.3 and Mac OS X 10.2.8 may allow…
CVE-2014-8456 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2014-8457 — CVSS 10.0 (critical): Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to…
CVE-2014-8458 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2008-4211 — CVSS 10.0 (critical): Integer signedness error in (1) QuickLook in Apple Mac OS X 10.5.5 and (2) Office Viewer in Apple iPhone OS 1.0 through 2.1 and iPhone OS…
CVE-2004-0513 — CVSS 10.0 (critical): Unspecified vulnerability in Mac OS X before 10.3.4 has unknown impact and attack vectors related to "logging when tracing system calls."
CVE-2002-1383 — CVSS 10.0 (critical): Multiple integer overflows in Common Unix Printing System (CUPS) 1.1.14 through 1.1.17 allow remote attackers to execute arbitrary code via…
CVE-2014-1358 — CVSS 10.0 (critical): Integer overflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to execute…
CVE-2014-8459 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2009-2193 — CVSS 10.0 (critical): Buffer overflow in the kernel in Apple Mac OS X 10.5 before 10.5.8 allows remote attackers to execute arbitrary code or cause a denial of…
CVE-2009-0138 — CVSS 10.0 (critical): servermgrd (Server Manager) in Apple Mac OS X 10.5.6 does not properly validate authentication credentials, which allows remote attackers…
CVE-2014-8460 — CVSS 10.0 (critical): Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to…
CVE-2004-0539 — CVSS 10.0 (critical): The "Show in Finder" button in the Safari web browser in Mac OS X 10.3.4 and 10.2.8 may execute downloaded applications, which could allow…
CVE-2008-0040 — CVSS 10.0 (critical): Unspecified vulnerability in NFS in Apple Mac OS X 10.5 through 10.5.1 allows remote attackers to cause a denial of service (system…
CVE-2014-8461 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2014-8817 — CVSS 10.0 (critical): coresymbolicationd in CoreSymbolication in Apple OS X before 10.10.2 does not verify that expected data types are present in XPC messages…
CVE-2014-8822 — CVSS 10.0 (critical): IOHIDFamily in Apple OS X before 10.10.2 allows attackers to execute arbitrary code in a kernel context or cause a denial of service (write…
CVE-2014-8824 — CVSS 10.0 (critical): The kernel in Apple OS X before 10.10.2 does not properly validate IODataQueue object metadata fields, which allows attackers to execute…
CVE-2014-8836 — CVSS 10.0 (critical): The Bluetooth driver in Apple OS X before 10.10.2 allows attackers to execute arbitrary code in a privileged context or cause a denial of…
CVE-2014-9158 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2014-9159 — CVSS 10.0 (critical): Heap-based buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers to…
CVE-2014-9160 — CVSS 10.0 (critical): Multiple heap-based buffer overflows in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow…
CVE-2014-9165 — CVSS 10.0 (critical): Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.13 and 11.x before 11.0.10 on Windows and OS X allows attackers…
CVE-2007-4704 — CVSS 10.0 (critical): The Application Firewall in Apple Mac OS X 10.5 does not apply changed settings to processes that are started by launchd until the…
CVE-2007-4703 — CVSS 10.0 (critical): The Application Firewall in Apple Mac OS X 10.5 does not prevent a root process from accepting incoming connections, even when "Block…
CVE-2015-0235 — CVSS 10.0 (critical): Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows…
CVE-2015-1066 — CVSS 10.0 (critical): Off-by-one error in IOAcceleratorFamily in Apple OS X through 10.10.2 allows attackers to execute arbitrary code in a privileged context…
CVE-2004-0926 — CVSS 10.0 (critical): Heap-based buffer overflow in Apple QuickTime on Mac OS 10.2.8 through 10.3.5 may allow remote attackers to execute arbitrary code via a…
CVE-2015-1132 — CVSS 10.0 (critical): fontd in Apple Type Services (ATS) in Apple OS X before 10.10.3 allows local users to gain privileges via unspecified vectors, a different…
CVE-2015-3046 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2015-3048 — CVSS 10.0 (critical): Buffer overflow in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers to execute…
CVE-2007-4691 — CVSS 10.0 (critical): The NSURL component in Apple Mac OS X 10.4 through 10.4.10 performs case-sensitive comparisons that allow attackers to bypass intended…
CVE-2007-4689 — CVSS 10.0 (critical): Double free vulnerability in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows remote attackers to cause a denial of…
CVE-2014-1359 — CVSS 10.0 (critical): Integer underflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to execute…
CVE-2008-4237 — CVSS 10.0 (critical): Managed Client in Apple Mac OS X before 10.5.6 sometimes misidentifies a system when installing per-host configuration settings, which…
CVE-2003-0201 — CVSS 10.0 (critical): Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and Samba-TNG…
CVE-2015-3049 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2009-0012 — CVSS 10.0 (critical): Heap-based buffer overflow in CoreText in Apple Mac OS X 10.5.6 allows remote attackers to execute arbitrary code via a crafted Unicode…
CVE-2015-3050 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2014-1373 — CVSS 10.0 (critical): Intel Graphics Driver in Apple OS X before 10.9.4 does not properly restrict an unspecified OpenGL API call, which allows attackers to…
CVE-2008-3616 — CVSS 10.0 (critical): Multiple integer overflows in the SearchKit API in Apple Mac OS X 10.4.11 and 10.5 through 10.5.4 allow context-dependent attackers to…
CVE-2015-3051 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2015-3052 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2015-3053 — CVSS 10.0 (critical): Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers…
CVE-2015-3054 — CVSS 10.0 (critical): Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers…
CVE-2015-3056 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2015-3057 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to execute arbitrary code or cause…
CVE-2015-3059 — CVSS 10.0 (critical): Use-after-free vulnerability in Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allows attackers…
CVE-2015-3060 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on…
CVE-2015-3061 — CVSS 10.0 (critical): Adobe Reader and Acrobat 10.x before 10.1.14 and 11.x before 11.0.11 on Windows and OS X allow attackers to bypass intended restrictions on…
CVE-2017-7126 — CVSS 9.8 (critical): An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product…
CVE-2021-30805 — CVSS 9.8 (critical): A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004…
CVE-2021-30793 — CVSS 9.8 (critical): A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.5, Security Update 2021-004 Catalina…
CVE-2002-1347 — CVSS 9.8 (critical): Multiple buffer overflows in Cyrus SASL library 2.1.9 and earlier allow remote attackers to cause a denial of service and possibly execute…
CVE-2021-30690 — CVSS 9.8 (critical): Multiple issues in apache were addressed by updating apache to version 2.4.46. This issue is fixed in Security Update 2021-004 Mojave…
CVE-2021-30678 — CVSS 9.8 (critical): A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina…
CVE-2021-30655 — CVSS 9.8 (critical): An application may be able to execute arbitrary code with system privileges. This issue is fixed in macOS Big Sur 11.3, Security Update…
CVE-2021-1882 — CVSS 9.8 (critical): A memory corruption issue was addressed with improved validation. This issue is fixed in Security Update 2021-002 Catalina, iOS 14.5 and…
CVE-2003-0466 — CVSS 9.8 (critical): Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, may allow attackers to execute arbitrary…
CVE-2021-1834 — CVSS 9.8 (critical): An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.3, Security Update…
CVE-2021-1818 — CVSS 9.8 (critical): A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina…
CVE-2020-9918 — CVSS 9.8 (critical): An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.6, tvOS 13.4.8, watchOS…
CVE-2020-9898 — CVSS 9.8 (critical): This issue was addressed with improved entitlements. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6. A sandboxed…
CVE-2020-9866 — CVSS 9.8 (critical): A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15.6, Security Update 2020-004…
CVE-2020-9864 — CVSS 9.8 (critical): A logic issue was addressed with improved restrictions. This issue is fixed in macOS Catalina 10.15.6. An application may be able to…
CVE-2020-9769 — CVSS 9.8 (critical): Multiple issues were addressed by updating to version 8.1.1850. This issue is fixed in macOS Catalina 10.15.4. Multiple issues in Vim.
CVE-2020-3911 — CVSS 9.8 (critical): A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4…
CVE-2020-3910 — CVSS 9.8 (critical): A buffer overflow was addressed with improved size validation. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4…
CVE-2020-3909 — CVSS 9.8 (critical): A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.4 and iPadOS 13.4, macOS Catalina 10.15.4…
CVE-2020-3850 — CVSS 9.8 (critical): A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker…
CVE-2020-3849 — CVSS 9.8 (critical): A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker…
CVE-2020-3848 — CVSS 9.8 (critical): A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker…
CVE-2020-3847 — CVSS 9.8 (critical): An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15.3. A remote attacker may be…
CVE-2019-8767 — CVSS 9.8 (critical): A memory consumption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15.1, Security Update…
CVE-2019-8756 — CVSS 9.8 (critical): Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in macOS Catalina 10.15, iOS 13…
CVE-2019-8746 — CVSS 9.8 (critical): An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Catalina 10.15, iOS 13, iCloud for Windows…
CVE-2019-8716 — CVSS 9.8 (critical): A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS Catalina 10.15.1, Security Update…
CVE-2019-8703 — CVSS 9.8 (critical): This issue was addressed with improved entitlements. This issue is fixed in watchOS 6, tvOS 13, macOS Catalina 10.15, iOS 13. An…
CVE-2019-8662 — CVSS 9.8 (critical): This issue was addressed with improved checks. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. An attacker…
CVE-2019-8661 — CVSS 9.8 (critical): A use after free issue was addressed with improved memory management. This issue is fixed in macOS Mojave 10.14.6. A remote attacker may be…
CVE-2019-8660 — CVSS 9.8 (critical): A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4…
CVE-2019-8648 — CVSS 9.8 (critical): A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4…
CVE-2019-8643 — CVSS 9.8 (critical): CVE-2019-8643: Arun Sharma of VMWare This issue is fixed in macOS Mojave 10.14. Description: A logic issue was addressed with improved…
CVE-2019-8600 — CVSS 9.8 (critical): A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3…
CVE-2019-8547 — CVSS 9.8 (critical): An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This…
CVE-2019-8531 — CVSS 9.8 (critical): A validation issue existed in Trust Anchor Management. This issue was addressed with improved validation. This issue is fixed in watchOS…
CVE-2019-7288 — CVSS 9.8 (critical): The issue was addressed with improved validation on the FaceTime server. This issue is fixed in macOS Mojave 10.14.3 Supplemental Update…
CVE-2019-6203 — CVSS 9.8 (critical): A logic issue was addressed with improved state management. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2. An attacker…
CVE-2005-1689 — CVSS 9.8 (critical): Double free vulnerability in the krb5_recvauth function in MIT Kerberos 5 (krb5) 1.4.1 and earlier allows remote attackers to execute…
CVE-2018-4353 — CVSS 9.8 (critical): A configuration issue was addressed with additional restrictions. This issue affected versions prior to macOS Mojave 10.14.
CVE-2018-4332 — CVSS 9.8 (critical): A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14…
CVE-2018-4331 — CVSS 9.8 (critical): A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12, macOS Mojave 10.14…
CVE-2018-4298 — CVSS 9.8 (critical): In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, a permissions issue existed…
CVE-2018-4296 — CVSS 9.8 (critical): This issue is fixed in macOS Mojave 10.14. A permissions issue existed in DiskArbitration. This was addressed with additional ownership…
CVE-2018-4295 — CVSS 9.8 (critical): An input validation issue was addressed with improved input validation. This issue affected versions prior to macOS Mojave 10.14.
CVE-2018-4291 — CVSS 9.8 (critical): Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to macOS High Sierra…
CVE-2018-4288 — CVSS 9.8 (critical): Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to macOS High Sierra…
CVE-2018-4287 — CVSS 9.8 (critical): Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to macOS High Sierra…
CVE-2018-4286 — CVSS 9.8 (critical): Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to macOS High Sierra…
CVE-2018-4268 — CVSS 9.8 (critical): A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to macOS High Sierra 10.13.6.
CVE-2018-4259 — CVSS 9.8 (critical): Multiple memory corruption issues were addressed with improved memory handling. This issue affected versions prior to macOS High Sierra…
CVE-2018-4254 — CVSS 9.8 (critical): In macOS High Sierra before 10.13.5, an input validation issue existed in the kernel. This issue was addressed with improved input…
CVE-2018-4189 — CVSS 9.8 (critical): In iOS before 11.2.5, macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, watchOS…
CVE-2018-4169 — CVSS 9.8 (critical): In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, an out-of-bounds read was…
CVE-2018-4124 — CVSS 9.8 (critical): An issue was discovered in certain Apple products. iOS before 11.2.6 is affected. macOS before 10.13.3 Supplemental Update is affected…
CVE-2018-4115 — CVSS 9.8 (critical): An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10.13.4 is affected. tvOS before 11.3 is…
CVE-2018-4108 — CVSS 9.8 (critical): An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. The issue involves the "Disk Management" component. It…
CVE-2018-4105 — CVSS 9.8 (critical): An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. The issue involves the "APFS" component. It allows…
CVE-2018-18311 — CVSS 9.8 (critical): Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations.
CVE-2017-7130 — CVSS 9.8 (critical): An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected…
CVE-2017-7129 — CVSS 9.8 (critical): An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected…
CVE-2017-7128 — CVSS 9.8 (critical): An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected…
CVE-2017-7125 — CVSS 9.8 (critical): An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product…
CVE-2017-7124 — CVSS 9.8 (critical): An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product…
CVE-2017-7123 — CVSS 9.8 (critical): An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product…
CVE-2017-7122 — CVSS 9.8 (critical): An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product…
CVE-2017-7121 — CVSS 9.8 (critical): An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product…
CVE-2017-7062 — CVSS 9.8 (critical): An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is…
CVE-2017-3167 — CVSS 9.8 (critical): In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, use of the ap_get_basic_auth_pw() by third-party modules outside of the…
CVE-2017-2527 — CVSS 9.8 (critical): An issue was discovered in certain Apple products. macOS before 10.12.5 is affected. The issue involves the "CoreAnimation" component. It…
CVE-2017-2524 — CVSS 9.8 (critical): An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is…