CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2018-4302
https://notcve.org/view.php?id=CVE-2018-4302
A null pointer dereference was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13, iCloud for Windows 7.0, watchOS 4, iOS 11, iTunes 12.7 for Windows. Processing maliciously crafted XML may lead to an unexpected application termination or arbitrary code execution. Se abordó una desreferencia de puntero null con una comprobación mejorada. Este problema es corregido en macOS High Sierra versión 10.13, iCloud para Windows versión 7.0, watchOS versión 4, iOS versión 11, iTunes versión 12.7 para Windows. • https://support.apple.com/en-us/HT208112 https://support.apple.com/en-us/HT208115 https://support.apple.com/en-us/HT208141 https://support.apple.com/en-us/HT208142 https://support.apple.com/en-us/HT208144 • CWE-476: NULL Pointer Dereference •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-8643
https://notcve.org/view.php?id=CVE-2019-8643
CVE-2019-8643: Arun Sharma of VMWare This issue is fixed in macOS Mojave 10.14. Description: A logic issue was addressed with improved state management.. CVE-2019-8643: Arun Sharma de VMWare Este problema es corregido en macOS Mojave versión 10.14. Descripción: Se abordó un problema de lógica con una administración de estados mejorada • https://support.apple.com/en-us/HT209139 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-13910
https://notcve.org/view.php?id=CVE-2017-13910
An access issue was addressed with additional sandbox restrictions on applications. This issue is fixed in macOS High Sierra 10.13. An application may be able to access restricted files. Se abordó un problema de acceso con restricciones adicionales de sandbox en las aplicaciones. Este problema es corregido en macOS High Sierra versión 10.13. • https://support.apple.com/en-us/HT208144 •
CVSS: 7.2EPSS: 0%CPEs: 19EXPL: 0CVE-2018-4478
https://notcve.org/view.php?id=CVE-2018-4478
A validation issue was addressed with improved logic. This issue is fixed in macOS High Sierra 10.13.5, Security Update 2018-003 Sierra, Security Update 2018-003 El Capitan. An attacker with physical access to a device may be able to elevate privileges. Se abordó un problema de comprobación con una lógica mejorada. Este problema es corregido en macOS High Sierra versión 10.13.5, Security Update 2018-003 Sierra, Security Update 2018-003 El Capitan. • https://support.apple.com/en-us/HT208849 • CWE-269: Improper Privilege Management •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-13909
https://notcve.org/view.php?id=CVE-2017-13909
An issue existed in the storage of sensitive tokens. This issue was addressed by placing the tokens in Keychain. This issue is fixed in macOS High Sierra 10.13. A local attacker may gain access to iCloud authentication tokens. Se presentó un problema en el almacenamiento de tokens confidenciales. • https://support.apple.com/en-us/HT208144 • CWE-922: Insecure Storage of Sensitive Information •