CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7084 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7084
28 Sep 2017 — An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Application Firewall" component. It allows remote attackers to bypass intended settings in opportunistic circumstances by leveraging incorrect handling of a denied setting after an upgrade. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de macOS anteriores a la 10.13. • http://www.securityfocus.com/bid/100993 •
CVSS: 7.5EPSS: 1%CPEs: 4EXPL: 0CVE-2017-7080 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7080
28 Sep 2017 — An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Security" component. It allows remote attackers to bypass intended certificate-trust restrictions via a revoked X.509 certificate. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de iOS anteriores a la 11, las versiones de macOS anteriores a la 10.13, las versiones de tvOS... • http://www.securityfocus.com/bid/100992 • CWE-295: Improper Certificate Validation •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7119 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7119
28 Sep 2017 — An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "IOFireWireFamily" component. It allows attackers to bypass intended memory-read restrictions via a crafted app. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de macOS anteriores a la 10.13. • http://www.securityfocus.com/bid/100993 • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7124 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7124
28 Sep 2017 — An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de macOS anteriores a la 10.13. • http://www.securityfocus.com/bid/100993 • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7126 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7126
28 Sep 2017 — An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de macOS anteriores a la 10.13. • http://www.securityfocus.com/bid/100993 • CWE-20: Improper Input Validation •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7082 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7082
28 Sep 2017 — An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Screen Lock" component. It allows physically proximate attackers to read Application Firewall prompts. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de macOS anteriores a la 10.13. • http://www.securityfocus.com/bid/100993 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 0CVE-2017-7129 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7129
28 Sep 2017 — An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the third-party "SQLite" product. Versions before 3.19.3 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de iOS anteriores a la 11, las versiones de macOS anterior... • http://www.securityfocus.com/bid/100987 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7138 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7138
28 Sep 2017 — An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Directory Utility" component. It allows local users to discover the Apple ID of the computer's owner. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de macOS anteriores a la 10.13. • http://www.securityfocus.com/bid/100993 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7077 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7077
28 Sep 2017 — An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "IOFireWireFamily" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de macOS anteriores a la 10.13. • http://www.securityfocus.com/bid/100993 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-7065 – Broadcom 802.11v WNM Sleep Mode Response Heap Overflow
https://notcve.org/view.php?id=CVE-2017-7065
26 Sep 2017 — An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is affected. The issue involves the "Wi-Fi" component. It allows remote attackers to execute arbitrary code (on the Wi-Fi chip) or cause a denial of service (memory corruption) by leveraging proximity for 802.11. Se ha descubierto un problema en algunos productos Apple. Las versiones de iOS anteriores a la 10.3.3, las versiones de macOS anteriores a la 10.12.6 y las versione... • http://www.securityfocus.com/bid/100655 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •