CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2024-44176 – Apple macOS ImageIO JP2 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-44176
16 Sep 2024 — An attacker can leverage this vulnerability to execute code in the context of the current process. macOS Sequoia 15 addresses buffer overflow, bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/121234 •
CVSS: 3.3EPSS: 0%CPEs: 3EXPL: 0CVE-2024-40791 – Apple Security Advisory 09-16-2024-9
https://notcve.org/view.php?id=CVE-2024-40791
16 Sep 2024 — An app may be able to access information about a user's contacts. macOS Sequoia 15 addresses buffer overflow, bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/121234 •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-40841 – Apple macOS AppleVADriver Out-Of-Bounds Write Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-40841
16 Sep 2024 — An attacker can leverage this vulnerability to execute code in the context of the current user. macOS Sequoia 15 addresses buffer overflow, bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/121238 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.4EPSS: 0%CPEs: 8EXPL: 0CVE-2024-40857 – Apple Security Advisory 09-16-2024-3
https://notcve.org/view.php?id=CVE-2024-40857
16 Sep 2024 — Processing maliciously crafted web content may lead to universal cross site scripting. macOS Sequoia 15 addresses buffer overflow, bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/121238 •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2024-44183 – Apple Security Advisory 09-16-2024-9
https://notcve.org/view.php?id=CVE-2024-44183
16 Sep 2024 — An app may be able to cause a denial-of-service. macOS Sequoia 15 addresses buffer overflow, bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/121234 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-40831 – Apple Security Advisory 09-16-2024-2
https://notcve.org/view.php?id=CVE-2024-40831
16 Sep 2024 — An app may be able to access a user's Photos Library. macOS Sequoia 15 addresses buffer overflow, bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/121238 •
CVSS: 4.9EPSS: 0%CPEs: 3EXPL: 0CVE-2024-44171 – Apple Security Advisory 09-16-2024-1
https://notcve.org/view.php?id=CVE-2024-44171
16 Sep 2024 — An attacker with physical access to a locked device may be able to Control Nearby Devices via accessibility features. iOS 18 and iPadOS 18 addresses bypass, cross site scripting, integer overflow, out of bounds access, and out of bounds read vulnerabilities. • https://support.apple.com/en-us/121240 •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-44130 – Apple Security Advisory 09-16-2024-2
https://notcve.org/view.php?id=CVE-2024-44130
16 Sep 2024 — An app with root privileges may be able to access private information. macOS Sequoia 15 addresses buffer overflow, bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/121238 •
CVSS: 8.1EPSS: 0%CPEs: 6EXPL: 0CVE-2024-44167 – Apple Security Advisory 09-16-2024-9
https://notcve.org/view.php?id=CVE-2024-44167
16 Sep 2024 — An app may be able to overwrite arbitrary files. macOS Sequoia 15 addresses buffer overflow, bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/121234 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-44188 – Apple Security Advisory 09-16-2024-2
https://notcve.org/view.php?id=CVE-2024-44188
16 Sep 2024 — An app may be able to access protected user data. macOS Sequoia 15 addresses buffer overflow, bypass, cross site scripting, integer overflow, out of bounds access, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/121238 •