CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-13910
https://notcve.org/view.php?id=CVE-2017-13910
An access issue was addressed with additional sandbox restrictions on applications. This issue is fixed in macOS High Sierra 10.13. An application may be able to access restricted files. Se abordó un problema de acceso con restricciones adicionales de sandbox en las aplicaciones. Este problema es corregido en macOS High Sierra versión 10.13. • https://support.apple.com/en-us/HT208144 •
CVSS: 7.2EPSS: 0%CPEs: 19EXPL: 0CVE-2018-4478
https://notcve.org/view.php?id=CVE-2018-4478
A validation issue was addressed with improved logic. This issue is fixed in macOS High Sierra 10.13.5, Security Update 2018-003 Sierra, Security Update 2018-003 El Capitan. An attacker with physical access to a device may be able to elevate privileges. Se abordó un problema de comprobación con una lógica mejorada. Este problema es corregido en macOS High Sierra versión 10.13.5, Security Update 2018-003 Sierra, Security Update 2018-003 El Capitan. • https://support.apple.com/en-us/HT208849 • CWE-269: Improper Privilege Management •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-13909
https://notcve.org/view.php?id=CVE-2017-13909
An issue existed in the storage of sensitive tokens. This issue was addressed by placing the tokens in Keychain. This issue is fixed in macOS High Sierra 10.13. A local attacker may gain access to iCloud authentication tokens. Se presentó un problema en el almacenamiento de tokens confidenciales. • https://support.apple.com/en-us/HT208144 • CWE-922: Insecure Storage of Sensitive Information •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-13835
https://notcve.org/view.php?id=CVE-2017-13835
A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS High Sierra 10.13. An application may be able to execute arbitrary code with elevated privileges. Se abordó un problema de corrupción de memoria con un manejo de la memoria mejorada. Este problema es corregido en macOS High Sierra versión 10.13. • https://support.apple.com/en-us/HT208144 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2021-30834
https://notcve.org/view.php?id=CVE-2021-30834
A logic issue was addressed with improved state management. This issue is fixed in iOS 14.8 and iPadOS 14.8, tvOS 15, iOS 15 and iPadOS 15, watchOS 8, Security Update 2021-007 Catalina. Processing a malicious audio file may result in unexpected application termination or arbitrary code execution. Se abordó un problema de lógica con una administración de estado mejorada. Este problema se corrigió en iOS versión 14.8 y iPadOS versión 14.8, tvOS versión 15, iOS versión 15 y iPadOS versión 15, watchOS versión 8, Security Update 2021-007 Catalina. • https://support.apple.com/en-us/HT212807 https://support.apple.com/en-us/HT212814 https://support.apple.com/en-us/HT212815 https://support.apple.com/en-us/HT212819 https://support.apple.com/en-us/HT212871 https://support.apple.com/kb/HT212804 •