Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Macos
(Apple)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 1503 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2021-09-08 | CVE-2021-1855 | A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.3. A malicious website may be able to force unnecessary network connections to fetch its favicon. | Macos | 6.5 | ||
1999-05-21 | CVE-1999-1393 | Control Panel "Password Security" option for Apple Powerbooks allows attackers with physical access to the machine to bypass the security by booting it with an emergency startup disk and using a disk editor to modify the on/off toggle or password in the aaaaaaaAPWD file, which is normally inaccessible. | Macos | N/A | ||
1999-06-03 | CVE-1999-1412 | A possible interaction between Apple MacOS X release 1.0 and Apache HTTP server allows remote attackers to cause a denial of service (crash) via a flood of HTTP GET requests to CGI programs, which generates a large number of processes. | Http_server, Macos | N/A | ||
1999-07-10 | CVE-1999-1543 | MacOS uses weak encryption for passwords that are stored in the Users & Groups Data File. | Macos | N/A | ||
1999-10-26 | CVE-1999-1076 | Idle locking function in MacOS 9 allows local users to bypass the password protection of idled sessions by selecting the "Log Out" option and selecting a "Cancel" option in the dialog box for an application that attempts to verify that the user wants to log out, which returns the attacker into the locked session. | Macos | N/A | ||
1999-11-01 | CVE-1999-1077 | Idle locking function in MacOS 9 allows local attackers to bypass the password protection of idled sessions via the programmer's switch or CMD-PWR keyboard sequence, which brings up a debugger that the attacker can use to disable the lock. | Macos | N/A | ||
1999-12-28 | CVE-2000-0041 | Macintosh systems generate large ICMP datagrams in response to malformed datagrams, allowing them to be used as amplifiers in a flood attack. | Macos | N/A | ||
2001-02-12 | CVE-2001-0102 | "Multiple Users" Control Panel in Mac OS 9 allows Normal users to gain Owner privileges by removing the Users & Groups Data File, which effectively removes the Owner password and allows the Normal user to log in as the Owner account without a password. | Macos | N/A | ||
2020-12-08 | CVE-2020-9972 | A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 14.0 and iPadOS 14.0. Processing a maliciously crafted USD file may lead to unexpected application termination or arbitrary code execution. | Ipad_os, Iphone_os, Macos, Tvos | 7.8 | ||
2021-09-08 | CVE-2021-30722 | An information disclosure issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. An attacker in a privileged network position may be able to leak sensitive user information. | Mac_os_x, Macos | 5.9 |