CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 1CVE-2019-6208 – macOS XNU - Copy-on-Write Behaviour Bypass via Partial-Page Truncation of File
https://notcve.org/view.php?id=CVE-2019-6208
23 Jan 2019 — A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2. A malicious application may cause unexpected changes in memory shared between processes. Se abordó un problema de inicialización de memoria con la mejora de la gestión de memoria. Este problema se ha resuelto en iOS 12.1.3, macOS Mojave 10.14.3 y tvOS 12.1.2. • https://www.exploit-db.com/exploits/46296 • CWE-665: Improper Initialization •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 4CVE-2019-6225 – iOS/macOS - 'task_swap_mach_voucher()' Use-After-Free
https://notcve.org/view.php?id=CVE-2019-6225
23 Jan 2019 — A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2. A malicious application may be able to elevate privileges. Se abordó un problema de corrupción de memoria con la mejora de la validación. Este problema se ha resuelto en iOS 12.1.3, macOS Mojave 10.14.3 y tvOS 12.1.2. • https://www.exploit-db.com/exploits/46248 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4256
https://notcve.org/view.php?id=CVE-2018-4256
11 Jan 2019 — In macOS High Sierra before 10.13.5, an out-of-bounds read was addressed with improved input validation. En macOS High Sierra en versiones anteriores a la 10.13.5, se abordó un problema de lectura fuera de límites con la mejora de la validación de entradas. • https://support.apple.com/HT208849 • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4217
https://notcve.org/view.php?id=CVE-2018-4217
11 Jan 2019 — In macOS High Sierra before 10.13.5, a privacy issue in the handling of Open Directory records was addressed with improved indexing. En macOS High Sierra en versiones anteriores a la 10.13.5, se abordó un problema de privacidad en el manejo de los registros Open Directory con la mejora de la indexación. • https://support.apple.com/HT208849 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 1CVE-2018-4185
https://notcve.org/view.php?id=CVE-2018-4185
11 Jan 2019 — In iOS before 11.3, tvOS before 11.3, watchOS before 4.3, and macOS before High Sierra 10.13.4, an information disclosure issue existed in the transition of program state. This issue was addressed with improved state handling. En iOS en versiones anteriores a la 11.3, tvOS en versiones anteriores a la 11.3, watchOS en versiones anteriores a la 4.3 y macOS en versiones anteriores a High Sierra 10.13.4, existía un problema de divulgación de información en la transición del estado del programa. Este problema s... • https://github.com/bazad/x18-leak • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4257
https://notcve.org/view.php?id=CVE-2018-4257
11 Jan 2019 — In macOS High Sierra before 10.13.5, a buffer overflow was addressed with improved size validation. En macOS High Sierra en versiones anteriores a la 10.13.5, se abordó un desbordamiento de búfer con la mejora de la validación de tamaño. • https://support.apple.com/HT208849 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-13887
https://notcve.org/view.php?id=CVE-2017-13887
11 Jan 2019 — In macOS High Sierra before 10.13.2, a logic issue existed in APFS when deleting keys during hibernation. This was addressed with improved state management. En macOS High Sierra en versiones anteriores a la 10.13.2, existía un problema de lógica en APFS al eliminar claves durante la hibernación. Esto fue abordado con la mejora de la gestión de estados. • https://support.apple.com/HT208331 • CWE-320: Key Management Errors •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4254
https://notcve.org/view.php?id=CVE-2018-4254
11 Jan 2019 — In macOS High Sierra before 10.13.5, an input validation issue existed in the kernel. This issue was addressed with improved input validation. En macOS High Sierra en versiones anteriores a la 10.13.5, existía un problema de validación de entradas en el kernel. Este problema se abordó mediante la mejora de la validación de entradas. • https://support.apple.com/HT208849 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2018-4258
https://notcve.org/view.php?id=CVE-2018-4258
11 Jan 2019 — In macOS High Sierra before 10.13.5, a buffer overflow was addressed with improved bounds checking. En macOS High Sierra en versiones anteriores a la 10.13.5, se abordó un desbordamiento de búfer con la mejora de la comprobación de límites. • https://support.apple.com/HT208849 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-13886
https://notcve.org/view.php?id=CVE-2017-13886
11 Jan 2019 — In macOS High Sierra before 10.13.2, an access issue existed with privileged WiFi system configuration. This issue was addressed with additional restrictions. En macOS High Sierra en versiones anteriores a la 10.13.2, existía un problema de accesos con la configuración privilegiada del sistema Wi-Fi. Este problema se abordó mediante restricciones adicionales. • https://support.apple.com/HT208331 •