CVSS: 4.3EPSS: 0%CPEs: -EXPL: 0CVE-2024-27860 – Apple macOS AppleVADriver Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-27860
The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. • https://support.apple.com/en-us/121238 •
CVSS: 4.3EPSS: 0%CPEs: -EXPL: 0CVE-2024-44154 – Apple macOS VideoToolbox Uninitialized Memory Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-44154
A memory initialization issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.7, macOS Sequoia 15. Processing a maliciously crafted file may lead to unexpected app termination. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of MOV files in the VTDecoderXPCService process. • https://support.apple.com/en-us/121238 https://support.apple.com/en-us/121247 •
CVSS: 4.3EPSS: 0%CPEs: -EXPL: 0CVE-2024-44161 – Apple macOS AppleGVA Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-44161
The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. • https://support.apple.com/en-us/121234 https://support.apple.com/en-us/121238 https://support.apple.com/en-us/121247 •
CVSS: 6.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-23984
https://notcve.org/view.php?id=CVE-2024-23984
Observable discrepancy in RAPL interface for some Intel(R) Processors may allow a privileged user to potentially enable information disclosure via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01103.html • CWE-203: Observable Discrepancy •
CVSS: 6.8EPSS: 0%CPEs: -EXPL: 0CVE-2023-43753
https://notcve.org/view.php?id=CVE-2023-43753
Improper conditions check in some Intel(R) Processors with Intel(R) SGX may allow a privileged user to potentially enable information disclosure via local access. • https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01071.html • CWE-92: DEPRECATED: Improper Sanitization of Custom Special Characters •