CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2017-7078 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7078
28 Sep 2017 — An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. The issue involves the "Mail Drafts" component. It allows remote attackers to obtain sensitive information by reading unintended cleartext transmissions. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de iOS anteriores a la 11 y las versiones de macOS anteriores a la 10.13. • http://www.securityfocus.com/bid/100999 • CWE-319: Cleartext Transmission of Sensitive Information •
CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 0CVE-2017-7130 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7130
28 Sep 2017 — An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the third-party "SQLite" product. Versions before 3.19.3 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de iOS anteriores a la 11, las versiones de macOS anterior... • http://www.securityfocus.com/bid/100987 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7141 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7141
28 Sep 2017 — An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Mail" component. It allows remote attackers to bypass an intended off value of the "Load remote content in messages" setting, and consequently discover an e-mail recipient's IP address, via an HTML email message. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de macOS anteriores a la 10.13. • http://www.securityfocus.com/bid/100993 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7084 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7084
28 Sep 2017 — An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Application Firewall" component. It allows remote attackers to bypass intended settings in opportunistic circumstances by leveraging incorrect handling of a denied setting after an upgrade. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de macOS anteriores a la 10.13. • http://www.securityfocus.com/bid/100993 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7124 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7124
28 Sep 2017 — An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de macOS anteriores a la 10.13. • http://www.securityfocus.com/bid/100993 • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7126 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7126
28 Sep 2017 — An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de macOS anteriores a la 10.13. • http://www.securityfocus.com/bid/100993 • CWE-20: Improper Input Validation •
CVSS: 2.4EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7082 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7082
28 Sep 2017 — An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Screen Lock" component. It allows physically proximate attackers to read Application Firewall prompts. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de macOS anteriores a la 10.13. • http://www.securityfocus.com/bid/100993 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 0CVE-2017-7129 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7129
28 Sep 2017 — An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the third-party "SQLite" product. Versions before 3.19.3 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de iOS anteriores a la 11, las versiones de macOS anterior... • http://www.securityfocus.com/bid/100987 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7138 – Apple Security Advisory 2017-10-31-8
https://notcve.org/view.php?id=CVE-2017-7138
28 Sep 2017 — An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Directory Utility" component. It allows local users to discover the Apple ID of the computer's owner. Se ha descubierto un problema en ciertos productos Apple. Se han visto afectadas las versiones de macOS anteriores a la 10.13. • http://www.securityfocus.com/bid/100993 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-7065 – Broadcom 802.11v WNM Sleep Mode Response Heap Overflow
https://notcve.org/view.php?id=CVE-2017-7065
26 Sep 2017 — An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. macOS before 10.12.6 is affected. tvOS before 10.2.2 is affected. The issue involves the "Wi-Fi" component. It allows remote attackers to execute arbitrary code (on the Wi-Fi chip) or cause a denial of service (memory corruption) by leveraging proximity for 802.11. Se ha descubierto un problema en algunos productos Apple. Las versiones de iOS anteriores a la 10.3.3, las versiones de macOS anteriores a la 10.12.6 y las versione... • http://www.securityfocus.com/bid/100655 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •