CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-4678 – Apple OS X AppleSMC smcHandleYPCEvent Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2016-4678
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "AppleSMC" component. It allows local users to gain privileges or cause a denial of service (NULL pointer dereference) via unspecified vectors. Se ha descubierto un problema en ciertos productos Apple. macOS en versiones anteriores a 10.12.1 está afectado. El problema involucra al componente "AppleSMC". • http://www.securityfocus.com/bid/93852 http://www.securitytracker.com/id/1037086 https://support.apple.com/HT207275 • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-4663
https://notcve.org/view.php?id=CVE-2016-4663
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "NVIDIA Graphics Drivers" component. It allows attackers to cause a denial of service (memory corruption) via a crafted app. Se ha descubierto un problema en ciertos productos Apple. macOS en versiones anteriores a 10.12.1 está afectado. El problema involucra el componente "NVIDIA Graphics Drivers". • http://www.securityfocus.com/bid/93852 http://www.securitytracker.com/id/1037086 https://support.apple.com/HT207275 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2016-4674
https://notcve.org/view.php?id=CVE-2016-4674
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "ATS" component. It allows local users to gain privileges or cause a denial of service (memory corruption and application crash) via unspecified vectors. Se ha descubierto un problema en ciertos productos Apple. macOS en versiones anteriores a 10.12.1 está afectado. El problema involucra al componente "ATS". • http://www.securityfocus.com/bid/93852 http://www.securitytracker.com/id/1037086 https://support.apple.com/HT207275 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2016-4671
https://notcve.org/view.php?id=CVE-2016-4671
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "ImageIO" component. It allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write and application crash) via a crafted PDF file. Se ha descubierto un problema en ciertos productos Apple. macOS en versiones anteriores a 10.12.1 está afectado. El problema involucra el componente "ImageIO". • http://www.securityfocus.com/bid/93852 http://www.securitytracker.com/id/1037086 https://support.apple.com/HT207275 • CWE-787: Out-of-bounds Write •
CVSS: 5.9EPSS: 0%CPEs: 3EXPL: 0CVE-2016-7579
https://notcve.org/view.php?id=CVE-2016-7579
An issue was discovered in certain Apple products. iOS before 10.1 is affected. macOS before 10.12.1 is affected. tvOS before 10.0.1 is affected. The issue involves the "CFNetwork Proxies" component, which allows man-in-the-middle attackers to spoof a proxy password authentication requirement and obtain sensitive information. Se ha descubierto un problema en ciertos productos Apple. iOS en versiones anteriores a 10.1 está afectado. macOS en versiones anteriores a 10.12.1 está afectado. tvOS en versiones anteriores a 10.0.1 está afectado. El problema involucra al componente "CFNetwork Proxies", lo que permite a atacantes man-in-the-middle suplantar la contraseña de autenticación requerida por el proxy y obtener información sensible. • http://www.securityfocus.com/bid/93856 http://www.securitytracker.com/id/1037086 https://support.apple.com/HT207270 https://support.apple.com/HT207271 https://support.apple.com/HT207275 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •