CVSS: 10.0EPSS: 1%CPEs: 6EXPL: 0CVE-2014-4376
https://notcve.org/view.php?id=CVE-2014-4376
IOKit in IOAcceleratorFamily in Apple OS X before 10.9.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via an application that provides crafted API arguments. IOKit en IOAcceleratorFamily en Apple OS X anterior a 10.9.5 permite a atacantes ejecutar código arbitrario en un contexto privilegiado o causar una denegación de servicio (referencia a puntero nulo) a través de una aplicación que provee argumentos de API manipulados. • http://support.apple.com/kb/HT6443 http://www.securityfocus.com/bid/69906 http://www.securitytracker.com/id/1030868 https://code.google.com/p/google-security-research/issues/detail?id=31 https://exchange.xforce.ibmcloud.com/vulnerabilities/96051 •
CVSS: 6.9EPSS: 0%CPEs: 6EXPL: 0CVE-2014-4398
https://notcve.org/view.php?id=CVE-2014-4398
An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code in a privileged context via a crafted application, a different vulnerability than CVE-2014-4394, CVE-2014-4395, CVE-2014-4396, CVE-2014-4397, CVE-2014-4399, CVE-2014-4400, CVE-2014-4401, and CVE-2014-4416. Una rutina no especificada del driver de gráficos integrados en el subsistema Intel Graphics Driver en Apple OS X anterior a 10.9.5 no valida debidamente las llamadas, lo que permite a atacantes ejecutar código arbitrario en un contexto privilegiado a través de una aplicación manipulada, una vulnerabilidad diferente a CVE-2014-4394, CVE-2014-4395, CVE-2014-4396, CVE-2014-4397, CVE-2014-4399, CVE-2014-4400, CVE-2014-4401 y CVE-2014-4416. • http://support.apple.com/kb/HT6443 http://www.securityfocus.com/bid/69894 http://www.securitytracker.com/id/1030868 https://code.google.com/p/google-security-research/issues/detail?id=32 https://exchange.xforce.ibmcloud.com/vulnerabilities/96058 • CWE-20: Improper Input Validation •
CVSS: 6.9EPSS: 0%CPEs: 6EXPL: 0CVE-2014-4396
https://notcve.org/view.php?id=CVE-2014-4396
An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code in a privileged context via a crafted application, a different vulnerability than CVE-2014-4394, CVE-2014-4395, CVE-2014-4397, CVE-2014-4398, CVE-2014-4399, CVE-2014-4400, CVE-2014-4401, and CVE-2014-4416. Una rutina no especificada del driver de gráficos integrados en el subsistema Intel Graphics Driver en Apple OS X anterior a 10.9.5 no valida debidamente las llamadas, lo que permite a atacantes ejecutar código arbitrario en un contexto privilegiado a través de una aplicación manipulada, una vulnerabilidad diferente a CVE-2014-4394, CVE-2014-4395, CVE-2014-4397, CVE-2014-4398, CVE-2014-4399, CVE-2014-4400, CVE-2014-4401 y CVE-2014-4416. • http://support.apple.com/kb/HT6443 http://www.securityfocus.com/bid/69892 http://www.securitytracker.com/id/1030868 https://code.google.com/p/google-security-research/issues/detail?id=30 https://exchange.xforce.ibmcloud.com/vulnerabilities/96056 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 0%CPEs: 5EXPL: 0CVE-2014-4390
https://notcve.org/view.php?id=CVE-2014-4390
Bluetooth in Apple OS X before 10.9.5 does not properly validate API calls, which allows attackers to execute arbitrary code in a privileged context via a crafted application. Bluetooth en Apple OS X anterior a 10.9.5 no valida debidamente llamadas API, lo que permite a atacantes ejecutar código arbitrario en un contexto privilegiado a través de una aplicación manipulada. • http://support.apple.com/kb/HT6443 http://www.securityfocus.com/bid/69901 http://www.securitytracker.com/id/1030868 https://exchange.xforce.ibmcloud.com/vulnerabilities/96052 • CWE-20: Improper Input Validation •
CVSS: 6.9EPSS: 0%CPEs: 6EXPL: 0CVE-2014-4401
https://notcve.org/view.php?id=CVE-2014-4401
An unspecified integrated graphics driver routine in the Intel Graphics Driver subsystem in Apple OS X before 10.9.5 does not properly validate calls, which allows attackers to execute arbitrary code in a privileged context via a crafted application, a different vulnerability than CVE-2014-4394, CVE-2014-4395, CVE-2014-4396, CVE-2014-4397, CVE-2014-4398, CVE-2014-4399, CVE-2014-4400, and CVE-2014-4416. Una rutina no especificada del driver de gráficos integrados en el subsistema Intel Graphics Driver en Apple OS X anterior a 10.9.5 no valida debidamente las llamadas, lo que permite a atacantes ejecutar código arbitrario en un contexto privilegiado a través de una aplicación manipulada, una vulnerabilidad diferente a CVE-2014-4394, CVE-2014-4395, CVE-2014-4396, CVE-2014-4397, CVE-2014-4398, CVE-2014-4399, CVE-2014-4400 y CVE-2014-4416. • http://support.apple.com/kb/HT6443 http://www.securityfocus.com/bid/69897 http://www.securitytracker.com/id/1030868 https://code.google.com/p/google-security-research/issues/detail?id=30 https://exchange.xforce.ibmcloud.com/vulnerabilities/96061 • CWE-20: Improper Input Validation •