This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:apple:mac_os_x
Detail
VendorAppleFirst view 2003-06-16
ProductMac Os XLast view2017-11-12
VersionTypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:apple:mac_os_x

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
6.82017-11-12CVE-2017-7132NetworkMediumNone Requ...
102017-11-12CVE-2017-13846NetworkLowNone Requ...
9.32017-11-12CVE-2017-13843NetworkMediumNone Requ...
4.32017-11-12CVE-2017-13842NetworkMediumNone Requ...
4.32017-11-12CVE-2017-13841NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32017-11-12CVE-2017-13840NetworkMediumNone Requ...
9.32017-11-12CVE-2017-13838NetworkMediumNone Requ...
4.32017-11-12CVE-2017-13836NetworkMediumNone Requ...
9.32017-11-12CVE-2017-13834NetworkMediumNone Requ...
9.32017-11-12CVE-2017-13833NetworkMediumNone Requ...
7.52017-11-12CVE-2017-13832NetworkLowNone Requ...
5.82017-11-12CVE-2017-13831NetworkMediumNone Requ...
9.32017-11-12CVE-2017-13830NetworkMediumNone Requ...
9.32017-11-12CVE-2017-13829NetworkMediumNone Requ...
4.32017-11-12CVE-2017-13828NetworkMediumNone Requ...
6.82017-11-12CVE-2017-13825NetworkMediumNone Requ...
6.82017-11-12CVE-2017-13824NetworkMediumNone Requ...
4.32017-11-12CVE-2017-13823NetworkMediumNone Requ...
4.32017-11-12CVE-2017-13822NetworkMediumNone Requ...
4.32017-11-12CVE-2017-13821NetworkMediumNone Requ...
5.82017-11-12CVE-2017-13820NetworkMediumNone Requ...
4.32017-11-12CVE-2017-13819NetworkMediumNone Requ...
4.32017-11-12CVE-2017-13818NetworkMediumNone Requ...
2.12017-11-12CVE-2017-13817LocalLowNone Requ...

CWE : Common Weakness Enumeration

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
%idName
42% (406)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
12% (122)CWE-200Information Exposure
9% (92)CWE-20Improper Input Validation
9% (89)CWE-264Permissions, Privileges, and Access Controls
3% (30)CWE-189Numeric Errors
Hide | Show 20 More...
%idName
2% (27)CWE-284Access Control (Authorization) Issues
2% (24)CWE-310Cryptographic Issues
2% (22)CWE-399Resource Management Errors
1% (19)CWE-254Security Features
1% (13)CWE-416Use After Free
1% (12)CWE-362Race Condition
1% (11)CWE-476NULL Pointer Dereference
1% (11)CWE-19Data Handling
1% (11)CWE-17Code
1% (10)CWE-125Out-of-bounds Read
0% (9)CWE-287Improper Authentication
0% (8)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
0% (5)CWE-134Uncontrolled Format String
0% (4)CWE-704Incorrect Type Conversion or Cast
0% (4)CWE-94Failure to Control Generation of Code ('Code Injection')
0% (3)CWE-295Certificate Issues
0% (3)CWE-255Credentials Management
0% (3)CWE-16Configuration
0% (2)CWE-415Double Free
0% (2)CWE-400Uncontrolled Resource Consumption ('Resource Exhaustion')

CAPEC : Common Attack Pattern Enumeration & Classification

idName
CAPEC-47Buffer Overflow via Parameter Expansion

Oval Markup Language : Definitions

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
OvalIDName
oval:org.mitre.oval:def:29329AIX Logjam Vulnerability
oval:org.mitre.oval:def:29478HP-UX OpenSSL Vulnerability (DHE man-in-the-middle protection (Logjam))
oval:org.mitre.oval:def:18216USN-1754-1 -- sudo vulnerability
oval:org.mitre.oval:def:27057ELSA-2014-1653 -- openssl security update
oval:org.mitre.oval:def:27014RHSA-2014:1653: openssl security update (Moderate)
Hide | Show 20 More...
idName
oval:org.mitre.oval:def:27138HP-UX Running OpenSSL, Remote Denial of Service (DoS), Unauthorized Access, M...
oval:org.mitre.oval:def:27104AIX OpenSSL Patch to mitigate CVE-2014-3566
oval:org.mitre.oval:def:28154IBM SDK Java Technology Edition vulnerability
oval:org.mitre.oval:def:28488SUSE-SU-2014:1519-1 -- Security update for evolution-data-server (moderate)
oval:org.mitre.oval:def:28481SUSE-SU-2014:1512-1 -- Security update for compat-openssl098 (moderate)
oval:org.mitre.oval:def:28273SUSE-SU-2014:1524-1 -- Security update for openssl (moderate)
oval:org.mitre.oval:def:28230SUSE-SU-2014:1447-1 -- Security update for openwsman (moderate)
oval:org.mitre.oval:def:28678SUSE-SU-2014:1558-1 -- Security update for pure-ftpd (moderate)
oval:org.mitre.oval:def:28595Potential security vulnerabilities have been identified in the Java Runtime ...
oval:org.mitre.oval:def:28398Potential security vulnerabilities have been identified in the Java Runtime ...
oval:org.mitre.oval:def:28500JRE and JDK Vulnerability on HPUX
oval:org.mitre.oval:def:29152Vulnerability in SSLv3 affects ftpd, sendmaild, imapd, and popd on AIX
oval:org.mitre.oval:def:29233SUSE-SU-2015:0108-1 -- Security update for evolution-data-server (moderate)
oval:org.mitre.oval:def:29107HP-UX Apache Server Suite running Apache Tomcat or PHP, Remote Denial of Ser...
oval:org.mitre.oval:def:23923USN-2125-1 -- python2.6, python2.7, python3.2, python3.3 vulnerability
oval:org.mitre.oval:def:25260SUSE-SU-2014:0576-1 -- Security update for Python
oval:org.mitre.oval:def:20541RHSA-2012:0731: expat security update (Moderate)
oval:org.mitre.oval:def:20359VMware security updates for vSphere API and ESX Service Console
oval:org.mitre.oval:def:20103DSA-2525-1 expat - several
oval:org.mitre.oval:def:18020USN-1613-2 -- python2.4 vulnerabilities

SAINT Exploits

DescriptionLink
Safari Script Editor AppleScript executionMore info here
Adobe Reader CoolType.dll buffer overflowMore info here
OS X rootpipe privilege elevationMore info here
Mac OS X rsh Environment Variables Privilege ElevationMore info here

Open Source Vulnerability Database (OSVDB)

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
76380Apple Mac OS X QuickTime FLIC File Handling Overflow
76379Apple Mac OS X QuickTime FlashPix File Handling Overflow
76378Apple Mac OS X QuickTime Movie File Atom Hierarchy Handling Remote Code Execu...
76377Apple Mac OS X QuickTime Movie File URL Data Handlers Handling Memory Disclosure
76375Apple Mac OS X User Documentation App Store Help Content MitM Weakness Remote...
Hide | Show 20 More...
idDescription
76373Apple Mac OS X QuickTime Save for Web Export MitM Weakness XSS
76372Apple Mac OS X Multiple QuickTime Movie File Handling Memory Corruption
76368Apple Mac OS X MediaKit Multiple Disk Image Handling Memory Corruption
76367Apple Mac OS X libsecurity Nonstandard Certificate Revocation Website / Email...
76366Apple Mac OS X Kernel Sticky Bit Directory Arbitrary File Deletion
76365Apple Mac OS X Kernel Firewall DMA Protection Weakness Password Disclosure
76364Apple Mac OS X IOGraphics Apple Cinema Displays Screen Lock Bypass
76363Apple Mac OS X File Systems WebDAV Volume Handling HTTPS Server Certificate W...
76360Apple Mac OS X CoreMedia Multiple QuickTime Movie File Handling Memory Corrup...
76359Apple Mac OS X CFNetwork Cookie Policy Synchronization Cookie Block Bypass
76358Apple Mac OS X ATS ATSFontDeactivate API Overflow
76357Apple Mac OS X ATS Out-of-bounds Read Type 1 Font Handling Remote Code Execution
76355Apple Mac OS X Application Firewall Debug Logging Binary Name Handling Format...
75446Apple Mac OS X Keychain CA Untrusted Attribute Extended Validation Certificat...
75007libc glob Expression Pathname Matching Remote DoS (2010-4754)
74382GNU troff contrib/pdfmark/pdfroff.sh Ghostscript Launch Arbitrary File Manipu...
73111GNU Troff pdfroff Temporary File Symlink Arbitrary File Overwrite
71636Apple Mac OS X Libinfo NFS RPC Packet Handling Remote DoS
71635Apple Mac OS X Kernel i386_set_ldt System Call Local Privilege Escalation
71634Apple Mac OS X HFS F_READBOOTSTRAP Ioctl Overflow Information Disclosure

ExploitDB Exploits

idDescription
35440Mac OS X IOKit Keyboard Driver Root Privilege Escalation
31875Python socket.recvfrom_into() - Remote Buffer Overflow
30395PHP openssl_x509_parse() - Memory Corruption Vulnerability
29168Apple Remote Desktop 3.7 - PoC
27944Mac OS X Sudo Password Bypass
Hide | Show 4 More...
idDescription
25974Mac OSX Server DirectoryService Buffer Overflow
17901Mac OS X < 10.6.7 Kernel Panic Exploit
16619Adobe CoolType SING Table "uniqueName" Stack Buffer Overflow
16494Adobe CoolType SING Table "uniqueName" Stack Buffer Overflow

OpenVAS Exploits

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2014-10-16Name : POODLE SSLv3 Protocol CBC ciphers Information Disclosure Vulnerability
File : nvt/gb_poodel_sslv3_info_disc_vuln.nasl
2012-11-16Name : VMSA-2012-0016: VMware security updates for vSphere API and ESX Service Console
File : nvt/gb_VMSA-2012-0016.nasl
2012-10-19Name : Ubuntu Update for python2.5 USN-1613-1
File : nvt/gb_ubuntu_USN_1613_1.nasl
2012-10-19Name : Ubuntu Update for python2.4 USN-1613-2
File : nvt/gb_ubuntu_USN_1613_2.nasl
2012-09-26Name : Gentoo Security Advisory GLSA 201209-06 (expat)
File : nvt/glsa_201209_06.nasl
Hide | Show 20 More...
idDescription
2012-09-25Name : Mac OS X v10.6.8 Multiple Vulnerabilities (2012-004)
File : nvt/gb_macosx_su12-004.nasl
2012-09-11Name : Ubuntu Update for xmlrpc-c USN-1527-2
File : nvt/gb_ubuntu_USN_1527_2.nasl
2012-08-30Name : Fedora Update for groff FEDORA-2012-8577
File : nvt/gb_fedora_2012_8577_groff_fc17.nasl
2012-08-14Name : Ubuntu Update for expat USN-1527-1
File : nvt/gb_ubuntu_USN_1527_1.nasl
2012-08-10Name : Debian Security Advisory DSA 2525-1 (expat)
File : nvt/deb_2525_1.nasl
2012-08-03Name : Mandriva Update for expat MDVSA-2012:041 (expat)
File : nvt/gb_mandriva_MDVSA_2012_041.nasl
2012-07-30Name : CentOS Update for expat CESA-2012:0731 centos5
File : nvt/gb_CESA-2012_0731_expat_centos5.nasl
2012-07-30Name : CentOS Update for expat CESA-2012:0731 centos6
File : nvt/gb_CESA-2012_0731_expat_centos6.nasl
2012-06-15Name : RedHat Update for expat RHSA-2012:0731-01
File : nvt/gb_RHSA-2012_0731-01_expat.nasl
2012-06-08Name : Fedora Update for groff FEDORA-2012-8590
File : nvt/gb_fedora_2012_8590_groff_fc15.nasl
2012-06-08Name : Fedora Update for groff FEDORA-2012-8596
File : nvt/gb_fedora_2012_8596_groff_fc16.nasl
2012-05-18Name : Apple QuickTime Multiple Vulnerabilities - (Windows)
File : nvt/gb_apple_quicktime_mult_vuln_win_may12.nasl
2012-05-18Name : Mac OS X Multiple Vulnerabilities (2012-002)
File : nvt/gb_macosx_su12-002.nasl
2012-02-06Name : Mac OS X Multiple Vulnerabilities (2012-001)
File : nvt/gb_macosx_su12-001.nasl
2011-11-03Name : Apple QuickTime Multiple Denial of Service Vulnerabilities - (Windows)
File : nvt/gb_apple_quicktime_mult_dos_vuln_win_nov11.nasl
2011-10-20Name : Apple Mac OS X 'i386_set_ldt()' Privilege Escalation Vulnerability
File : nvt/gb_macosx_i386_set_ldt_prv_esc_vuln.nasl
2011-10-20Name : Mac OS X v10.6.8 Multiple Vulnerabilities (2011-006)
File : nvt/gb_macosx_su11-006.nasl
2011-09-23Name : Apple Mac OS X Keychain Certificate Settings Security Bypass Vulnerability
File : nvt/secpod_macosx_keychain_impl_sec_bypass_vuln.nasl
2011-09-07Name : Apple Mac OS X iWork 9.1 Update
File : nvt/gb_macosx_iwork_9_1_upd.nasl
2011-09-07Name : Mac OS X v10.6.4 Multiple Vulnerabilities (2010-007)
File : nvt/gb_macosx_su10-007.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2015-A-0222Multiple Security Vulnerabilities in Apple iOS
Severity : Category I - VMSKEY : V0061471
2015-A-0199Multiple Vulnerabilities in Apple Mac OS X
Severity : Category I - VMSKEY : V0061337
2015-A-0154Multiple Vulnerabilities in Oracle Fusion Middleware
Severity : Category I - VMSKEY : V0061081
2015-A-0158Multiple Vulnerabilities in Oracle Java SE
Severity : Category I - VMSKEY : V0061089
2015-B-0014Multiple Vulnerabilities in VMware ESXi 5.5
Severity : Category I - VMSKEY : V0058513
Hide | Show 12 More...
idDescription
2015-B-0013Multiple Vulnerabilities in VMware ESXi 5.1
Severity : Category I - VMSKEY : V0058515
2015-B-0012Multiple Vulnerabilities in VMware ESXi 5.0
Severity : Category I - VMSKEY : V0058517
2014-A-0114Multiple Vulnerabilities in Apache HTTP Server
Severity : Category I - VMSKEY : V0053307
2014-A-0091Multiple Vulnerabilities in Apple Mac OS X
Severity : Category I - VMSKEY : V0052905
2014-B-0048Multiple Security Vulnerabilities in Apple iOS
Severity : Category I - VMSKEY : V0050015
2014-A-0059Apple Mac OS X Security Update 2014-002
Severity : Category I - VMSKEY : V0049741
2014-B-0024Multiple Security Vulnerabilities in Apple iOS
Severity : Category I - VMSKEY : V0046157
2014-B-0018Multiple Vulnerabilities in Apple Quick Time
Severity : Category II - VMSKEY : V0044545
2014-A-0030Apple Mac OS X Security Update 2014-001
Severity : Category I - VMSKEY : V0044547
2013-A-0179Apple Mac OS X Security Update 2013-004
Severity : Category I - VMSKEY : V0040373
2013-B-0058Multiple Vulnerabilities in Apple QuickTime
Severity : Category II - VMSKEY : V0038436
2012-A-0189Multiple Vulnerabilities in VMware ESXi 4.1 and ESX 4.1
Severity : Category I - VMSKEY : V0035032

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2018-08-16PHP phar extension remote code execution attempt
RuleID : 47207 - Type : SERVER-WEBAPP - Revision : 2
2018-08-16Apple Quicktime malformed FPX file memory corruption attempt
RuleID : 47174 - Type : FILE-IMAGE - Revision : 1
2018-08-16Apple Quicktime malformed FPX file memory corruption attempt
RuleID : 47173 - Type : FILE-IMAGE - Revision : 1
2018-07-31FreeBSD bspatch utility remote code execution attempt
RuleID : 47048 - Type : FILE-OTHER - Revision : 1
2018-07-31FreeBSD bspatch utility remote code execution attempt
RuleID : 47047 - Type : FILE-OTHER - Revision : 1
Hide | Show 20 More...
DateDescription
2018-07-31Apple QuickTime MPEG stream padding buffer overflow attempt
RuleID : 47033 - Type : FILE-MULTIMEDIA - Revision : 3
2018-07-31Apple QuickTime MPEG stream padding buffer overflow attempt
RuleID : 47032 - Type : FILE-MULTIMEDIA - Revision : 3
2018-01-17Apple Quicktime malformed FPX file memory corruption attempt
RuleID : 45186 - Type : FILE-IMAGE - Revision : 1
2018-01-17Apple Quicktime malformed FPX file memory corruption attempt
RuleID : 45185 - Type : FILE-IMAGE - Revision : 1
2017-10-24PHP form-based file upload DoS attempt
RuleID : 44390 - Type : SERVER-WEBAPP - Revision : 2
2017-07-06FreeBSD bspatch utility remote code execution attempt
RuleID : 43108 - Type : FILE-OTHER - Revision : 1
2017-07-06FreeBSD bspatch utility remote code execution attempt
RuleID : 43107 - Type : FILE-OTHER - Revision : 1
2017-07-04Apple Quicktime malformed FPX file memory corruption attempt
RuleID : 43052 - Type : FILE-IMAGE - Revision : 1
2017-07-04Apple Quicktime malformed FPX file memory corruption attempt
RuleID : 43051 - Type : FILE-IMAGE - Revision : 1
2017-03-14Apple OSX and iOS x509 certificate name constraints parsing use after free at...
RuleID : 41999 - Type : OS-OTHER - Revision : 3
2017-02-23OpenLDAP BER Message denial of service attempt
RuleID : 41382 - Type : SERVER-OTHER - Revision : 2
2017-02-23OpenLDAP BER Message denial of service attempt
RuleID : 41381 - Type : SERVER-OTHER - Revision : 2
2017-02-23OpenLDAP BER Message denial of service attempt
RuleID : 41380 - Type : SERVER-OTHER - Revision : 2
2016-08-18PHP phar extension remote code execution attempt
RuleID : 39662 - Type : SERVER-WEBAPP - Revision : 3
2016-07-17Apple OSX EXR image invalid box2i attribute heap buffer overflow attempt
RuleID : 39635 - Type : FILE-IMAGE - Revision : 3
2016-07-17Apple OSX EXR image invalid box2i attribute heap buffer overflow attempt
RuleID : 39634 - Type : FILE-IMAGE - Revision : 3
2016-07-17Apple OSX EXR image tile size heap buffer overflow attempt
RuleID : 39600 - Type : FILE-IMAGE - Revision : 3
2016-07-17Apple OSX EXR image tile size heap buffer overflow attempt
RuleID : 39599 - Type : FILE-IMAGE - Revision : 3
2016-07-17Apple OSX SceneKit invalid COLLADA file geometry attribute type confusion att...
RuleID : 39598 - Type : FILE-MULTIMEDIA - Revision : 3
2016-07-17Apple OSX SceneKit invalid COLLADA file geometry attribute type confusion att...
RuleID : 39597 - Type : FILE-MULTIMEDIA - Revision : 3

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2019-01-11Name : The remote device is missing a vendor-supplied security patch.
File : juniper_jsa10916.nasl - Type : ACT_GATHER_INFO
2018-11-13Name : The remote Debian host is missing a security update.
File : debian_DLA-1573.nasl - Type : ACT_GATHER_INFO
2018-01-15Name : The remote Fedora host is missing a security update.
File : fedora_2017-355ac8a91a.nasl - Type : ACT_GATHER_INFO
2018-01-05Name : The remote Apple TV device is affected by multiple vulnerabilities.
File : appletv_11_2.nasl - Type : ACT_GATHER_INFO
2017-12-11Name : The remote Fedora host is missing a security update.
File : fedora_2017-a253644369.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2017-12-07Name : The remote host is potentially affected by an SSL/TLS vulnerability.
File : check_point_gaia_sk103683.nasl - Type : ACT_GATHER_INFO
2017-12-07Name : The remote host is missing a macOS update that fixes multiple security vulner...
File : macos_10_13_2.nasl - Type : ACT_GATHER_INFO
2017-12-07Name : The remote host is missing a macOS or Mac OS X security update that fixes mul...
File : macosx_SecUpd2017-005.nasl - Type : ACT_GATHER_INFO
2017-11-03Name : The remote host is missing a macOS update that fixes multiple security vulner...
File : macos_10_13_1.nasl - Type : ACT_GATHER_INFO
2017-11-03Name : The remote host is missing a macOS or Mac OS X security update that fixes mul...
File : macosx_SecUpd2017-004.nasl - Type : ACT_GATHER_INFO
2017-10-03Name : The remote host is missing a macOS update that fixes multiple security vulner...
File : macos_10_13.nasl - Type : ACT_GATHER_INFO
2017-09-22Name : The remote Apple TV device is affected by multiple vulnerabilities.
File : appletv_11.nasl - Type : ACT_GATHER_INFO
2017-09-20Name : An IDE application installed on the remote macOS or Mac OS X host is affected...
File : macosx_xcode_9.nasl - Type : ACT_GATHER_INFO
2017-09-08Name : The remote EulerOS host is missing a security update.
File : EulerOS_SA-2017-1185.nasl - Type : ACT_GATHER_INFO
2017-09-08Name : The remote EulerOS host is missing a security update.
File : EulerOS_SA-2017-1186.nasl - Type : ACT_GATHER_INFO
2017-09-06Name : The remote openSUSE host is missing a security update.
File : openSUSE-2017-1011.nasl - Type : ACT_GATHER_INFO
2017-09-01Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2017-2318-1.nasl - Type : ACT_GATHER_INFO
2017-08-25Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2017-1868.nasl - Type : ACT_GATHER_INFO
2017-08-22Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20170801_python_on_SL7_x.nasl - Type : ACT_GATHER_INFO
2017-08-09Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2017-1868.nasl - Type : ACT_GATHER_INFO
2017-08-02Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2017-1868.nasl - Type : ACT_GATHER_INFO
2017-07-31Name : The remote device is affected by multiple vulnerabilities.
File : juniper_jsa10804.nasl - Type : ACT_GATHER_INFO
2017-07-26Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-3365-1.nasl - Type : ACT_GATHER_INFO
2017-07-25Name : An application installed on the remote host is affected by multiple vulnerabi...
File : itunes_12_6_2.nasl - Type : ACT_GATHER_INFO
2017-07-25Name : An application running on the remote host is affected by multiple vulnerabili...
File : itunes_12_6_2_banner.nasl - Type : ACT_GATHER_INFO