Filtered by vendor Apple
Subscribe
Total
235 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2019-8541 | 1 Apple | 2 Iphone Os, Watchos | 2023-12-10 | 2.1 LOW | 3.3 LOW |
A privacy issue existed in motion sensor calibration. This issue was addressed with improved motion sensor processing. This issue is fixed in iOS 12.2, watchOS 5.2. A malicious app may be able to track users between installs. | |||||
CVE-2019-8502 | 1 Apple | 4 Iphone Os, Mac Os X, Tvos and 1 more | 2023-12-10 | 4.3 MEDIUM | 3.3 LOW |
An API issue existed in the handling of dictation requests. This issue was addressed with improved validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to initiate a Dictation request without user authorization. | |||||
CVE-2018-4387 | 1 Apple | 1 Iphone Os | 2023-12-10 | 2.1 LOW | 2.4 LOW |
A lock screen issue allowed access to photos via Reply With Message on a locked device. This issue was addressed with improved state management. This issue affected versions prior to iOS 12.1. | |||||
CVE-2018-4470 | 1 Apple | 1 Mac Os X | 2023-12-10 | 4.3 MEDIUM | 3.3 LOW |
A privacy issue in the handling of Open Directory records was addressed with improved indexing. This issue affected versions prior to macOS High Sierra 10.13.6. | |||||
CVE-2018-4325 | 1 Apple | 1 Iphone Os | 2023-12-10 | 2.1 LOW | 2.4 LOW |
A logic issue was addressed with improved restrictions. This issue affected versions prior to iOS 12. | |||||
CVE-2018-4352 | 1 Apple | 1 Iphone Os | 2023-12-10 | 2.1 LOW | 3.3 LOW |
A consistency issue existed in the handling of application snapshots. The issue was addressed with improved handling of notes deletions. This issue affected versions prior to iOS 12. | |||||
CVE-2018-4446 | 1 Apple | 1 Iphone Os | 2023-12-10 | 4.3 MEDIUM | 3.3 LOW |
This issue was addressed with improved entitlements. This issue affected versions prior to iOS 12.1.1. | |||||
CVE-2018-4322 | 1 Apple | 1 Iphone Os | 2023-12-10 | 2.1 LOW | 3.3 LOW |
This issue was addressed with improved entitlements. This issue affected versions prior to iOS 12. | |||||
CVE-2018-4430 | 1 Apple | 1 Iphone Os | 2023-12-10 | 2.1 LOW | 2.4 LOW |
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue affected versions prior to iOS 12.1.1. | |||||
CVE-2017-13877 | 1 Apple | 1 Iphone Os | 2023-12-10 | 4.3 MEDIUM | 3.3 LOW |
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Sandbox Profiles" component. It allows attackers to determine whether arbitrary files exist via a crafted app. | |||||
CVE-2018-4123 | 1 Apple | 1 Iphone Os | 2023-12-10 | 2.1 LOW | 2.4 LOW |
An issue was discovered in certain Apple products. iOS before 11.3 is affected. The issue involves alarm and timer handling in the "Clock" component. It allows physically proximate attackers to discover the iTunes e-mail address. | |||||
CVE-2018-4238 | 1 Apple | 1 Iphone Os | 2023-12-10 | 2.1 LOW | 2.4 LOW |
An issue was discovered in certain Apple products. iOS before 11.4 is affected. The issue involves the "Siri" component. It allows physically proximate attackers to bypass the lock-screen protection mechanism and enable Siri. | |||||
CVE-2017-7084 | 1 Apple | 1 Mac Os X | 2023-12-10 | 4.3 MEDIUM | 3.7 LOW |
An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Application Firewall" component. It allows remote attackers to bypass intended settings in opportunistic circumstances by leveraging incorrect handling of a denied setting after an upgrade. | |||||
CVE-2017-7082 | 1 Apple | 1 Mac Os X | 2023-12-10 | 2.1 LOW | 2.4 LOW |
An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the "Screen Lock" component. It allows physically proximate attackers to read Application Firewall prompts. | |||||
CVE-2017-5081 | 6 Apple, Debian, Google and 3 more | 9 Macos, Debian Linux, Android and 6 more | 2023-12-10 | 2.1 LOW | 3.3 LOW |
Lack of verification of an extension's locale folder in Google Chrome prior to 59.0.3071.86 for Mac, Windows, and Linux, and 59.0.3071.92 for Android, allowed an attacker with local write access to modify extensions by modifying extension files. | |||||
CVE-2017-7148 | 1 Apple | 1 Iphone Os | 2023-12-10 | 4.3 MEDIUM | 3.3 LOW |
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Location Framework" component. It allows attackers to obtain sensitive location information via a crafted app that reads the location variable. | |||||
CVE-2017-13801 | 1 Apple | 1 Mac Os X | 2023-12-10 | 2.1 LOW | 3.3 LOW |
An issue was discovered in certain Apple products. macOS before 10.13.1 is affected. The issue involves the "Dictionary Widget" component. It allows attackers to read local files if pasted text is used in a search. | |||||
CVE-2017-7139 | 1 Apple | 1 Iphone Os | 2023-12-10 | 2.1 LOW | 2.4 LOW |
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Phone" component. It allows attackers to obtain sensitive information by leveraging a timing bug to read a secure-content screenshot that occurred during a locking action. | |||||
CVE-2017-7058 | 1 Apple | 1 Iphone Os | 2023-12-10 | 2.1 LOW | 2.4 LOW |
An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. The issue involves the "Notifications" component. It allows physically proximate attackers to read unintended notifications on the lock screen. | |||||
CVE-2017-13844 | 1 Apple | 1 Iphone Os | 2023-12-10 | 2.1 LOW | 2.4 LOW |
An issue was discovered in certain Apple products. iOS before 11.1 is affected. The issue involves the "Messages" component. It allows physically proximate attackers to view arbitrary photos via a Reply With Message action in the lock-screen state. |