CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4456 – Apple Security Advisory 2019-5-13-2
https://notcve.org/view.php?id=CVE-2018-4456
03 Apr 2019 — A memory corruption issue was addressed with improved input validation. This issue affected versions prior to macOS High Sierra 10.13.6, macOS Mojave 10.14. Un problema de corrupción de memoria se abordó con una validación de entradas mejorada. Este problema afectaba a macOS High Sierra en versiones anteriores a la 10.13.6 y macOS Mojave en versiones anteriores a la 10.14. macOS Mojave 10.14.5, Security Update 2019-003 High Sierra, Security Update 2019-003 Sierra are now available and addresses bypass and c... • http://seclists.org/fulldisclosure/2019/May/20 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4421
https://notcve.org/view.php?id=CVE-2018-4421
03 Apr 2019 — A memory initialization issue was addressed with improved memory handling. This issue affected versions prior to macOS Mojave 10.14.1. Un problema de inicialización de memoria se abordó con una gestión de memoria mejorada. Este problema afectaba a macOS Mojave en versiones anteriores a la 10.14.1. • https://support.apple.com/kb/HT209193 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.0EPSS: 0%CPEs: 7EXPL: 0CVE-2017-7151
https://notcve.org/view.php?id=CVE-2017-7151
03 Apr 2019 — A race condition was addressed with additional validation. This issue affected versions prior to iOS 11.2, macOS High Sierra 10.13.2, tvOS 11.2, watchOS 4.2, iTunes 12.7.2 for Windows, macOS High Sierra 10.13.4. Una condición de carrera se abordó con una validación adicional. El problema afectaba a iOS, en versiones anteriores a la 11.2; macOS High Sierra,en versiones anteriores a la 10.13.2; tvOS, en versiones anteriores a la 11.2; watchOS, en versiones anteriores a la 4.2; iTunes para Windows, en versione... • https://support.apple.com/kb/HT208325 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2019-8504 – Apple Security Advisory 2019-3-25-2
https://notcve.org/view.php?id=CVE-2019-8504
26 Mar 2019 — A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4. A local user may be able to read kernel memory. Un problema de inicialización de memoria fue abordado mejorando el manejo de la memoria. Este problema es corregido en iOS versión 12.2, macOS Mojave versión 10.14.4. • https://support.apple.com/HT209599 • CWE-665: Improper Initialization •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8507 – Apple Security Advisory 2019-3-25-2
https://notcve.org/view.php?id=CVE-2019-8507
26 Mar 2019 — Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in macOS Mojave 10.14.4. Processing malicious data may lead to unexpected application termination. Múltiples problemas de corrupción de memoria fueron abordados con una comprobación de entrada mejorada. Este problema es corregido en macOS Mojave versión 10.14.4. • https://support.apple.com/HT209600 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8508 – Apple Security Advisory 2019-3-25-2
https://notcve.org/view.php?id=CVE-2019-8508
26 Mar 2019 — A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Mojave 10.14.4. Mounting a maliciously crafted NFS network share may lead to arbitrary code execution with system privileges. Un desbordamiento del búfer fue abordado mejorando la comprobación de límites. Este problema es corregido en macOS Mojave versión 10.14.4. • https://support.apple.com/HT209600 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2019-8510 – Apple Security Advisory 2019-3-25-2
https://notcve.org/view.php?id=CVE-2019-8510
26 Mar 2019 — An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout. Se presentó un problema de lectura fuera de límites que condujo a la divulgación de la memoria del kernel. • https://support.apple.com/HT209599 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2019-8511 – Apple Security Advisory 2019-3-25-2
https://notcve.org/view.php?id=CVE-2019-8511
26 Mar 2019 — A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, watchOS 5.2. A malicious application may be able to elevate privileges. Se solucionó un problema de desbordamiento del búfer mejorando el manejo de la memoria. Este problema es corregido en iOS versión 12.2, macOS Mojave versión 10.14.4, watchOS versión 5.2. • https://support.apple.com/HT209599 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 2CVE-2019-8513 – Mac OS X TimeMachine - 'tmdiagnose' Command Injection Privilege Escalation
https://notcve.org/view.php?id=CVE-2019-8513
26 Mar 2019 — This issue was addressed with improved checks. This issue is fixed in macOS Mojave 10.14.4. A local user may be able to execute arbitrary shell commands. Este problema fue abordado con comprobaciones mejoradas. Este problema es corregido en macOS Mojave versión 10.14.4. • https://packetstorm.news/files/id/153488 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 2CVE-2019-8514 – iOS < 12.2 / macOS < 10.14.4 XNU - pidversion Increment During execve is Unsafe
https://notcve.org/view.php?id=CVE-2019-8514
26 Mar 2019 — A logic issue was addressed with improved state management. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. An application may be able to gain elevated privileges. Un problema lógico fue abordado mejorando la gestión del estado. Este problema es corregido en iOS versión 12.2, macOS Mojave versión 10.14.4, tvOS versión 12.2, watchOS versión 5.2. • https://packetstorm.news/files/id/152326 •