Month | Quarter | Year |
---|---|---|
#N/A | #N/A | #N/A |
CVE-ID | CWE-ID | Type | Score |
---|---|---|---|
CVE-2018-4348 | CWE-20 | Input Validation | 5.5 |
A validation issue was addressed with improved logic. This issue affected versions prior to macOS Mojave 10.14.
|
|||
CVE-2017-8502 | CWE-119 | Buffer Errors | 7.8 |
Microsoft Office allows a remote code execution vulnerability due to the way that it handles objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8501.
|
|||
CVE-2017-7114 | CWE-119 | Buffer Errors | 7.8 |
An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
|
|||
CVE-2017-7054 | CWE-119 | Buffer Errors | 8.0 |
An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue involves the "Bluetooth" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
|
|||
CVE-2017-7051 | CWE-119 | Buffer Errors | 8.0 |
An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue involves the "Bluetooth" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
|
|||
CVE-2017-13848 | CWE-20 | Input Validation | 7.8 |
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "IOKit" component. It allows attackers to execute arbitrary code in a privileged context via a crafted app.
|
|||
CVE-2017-13806 | CWE-254 | Security Features | 5.5 |
An issue was discovered in certain Apple products. iOS before 11 is affected. The issue involves the "Profiles" component. It does not enforce the configuration profile's settings for whether pairings are allowed.
|