Skip to main content
CVE-2015-3673 HIGH POC PATCH Act Now

Admin Framework in Apple OS X before 10.10.4 does not properly restrict the location of writeconfig clients, which allows local users to obtain root privileges by moving and then modifying Directory. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. Public exploit code available.

Apple Privilege Escalation Mac Os X
NVD Exploit-DB
CVSS 2.0
7.2
EPSS
3.0%
CVE-2015-3717 HIGH PATCH CISA Act Now

Multiple buffer overflows in the printf functionality in SQLite, as used in Apple iOS before 8.4 and OS X before 10.10.4, allow remote attackers to execute arbitrary code or cause a denial of service. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Denial Of Service Apple Buffer Overflow RCE Sqlite +2
NVD
CVSS 2.0
7.5
EPSS
1.9%
CVE-2015-3708 HIGH PATCH This Week

kextd in kext tools in Apple OS X before 10.10.4 allows attackers to write to arbitrary files via a crafted app that conducts a symlink attack. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable.

Apple Information Disclosure Mac Os X
NVD
CVSS 2.0
8.8
EPSS
0.5%
CVE-2015-3674 HIGH PATCH This Week

afpserver in Apple OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. This Buffer Overflow vulnerability could allow attackers to corrupt memory to execute arbitrary code or crash the application.

Denial Of Service Apple Buffer Overflow RCE Mac Os X
NVD
CVSS 2.0
7.5
EPSS
2.2%
CVE-2015-3678 HIGH PATCH This Week

AppleThunderboltEDMService in Apple OS X before 10.10.4 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified Thunderbolt commands. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. This Command Injection vulnerability could allow attackers to inject arbitrary commands into system command execution.

Command Injection Apple Buffer Overflow Denial Of Service Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.2%
CVE-2015-3701 HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-3699 HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-3698 HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-3697 HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-3696 HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3697,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-3695 HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3696, CVE-2015-3697,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-4234 HIGH This Week

Cisco NX-OS 6.0(2) and 6.2(2) on Nexus devices has an improper OS configuration, which allows local users to obtain root access via unspecified input to the Python interpreter, aka Bug IDs. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Cisco Python Privilege Escalation Nx Os
NVD
CVSS 2.0
7.2
EPSS
0.1%
CVE-2015-3702 HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.0%
CVE-2015-3700 HIGH PATCH This Week

Buffer overflow in the Intel Graphics Driver in Apple OS X before 10.10.4 allows local users to gain privileges via unspecified vectors, a different vulnerability than CVE-2015-3695, CVE-2015-3696,. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Buffer Overflow Intel Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.0%
CVE-2015-3671 HIGH PATCH This Week

Admin Framework in Apple OS X before 10.10.4 does not properly verify XPC entitlements, which allows local users to bypass authentication and obtain admin privileges via unspecified vectors. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Authentication Bypass Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.0%
CVE-2015-3672 HIGH PATCH This Week

Admin Framework in Apple OS X before 10.10.4 does not properly handle authentication errors, which allows local users to obtain admin privileges via unspecified vectors. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Apple Authentication Bypass Mac Os X
NVD
CVSS 2.0
7.2
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy