Apple Mac OS X 10.11.6 Security Update 2016-001
Approved changes feed: RSS · Atom
cpe:2.3:o:apple:mac_os_x:10.11.6:security_update_2016-001:*:*:*:*:*:*
part: o version: 10.11.6 update: security_update_2016-001
| Vendor | Apple (c2b419d0-9f0f-51c1-88dc-2e204a98e1c7) |
|---|---|
| Product | Mac Os X (f0578782-d1e8-5b8d-b127-ce7d4203eaaf) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-4478 |
vulnerable | 2026-06-03 14:38:51.182906 |
Details available
A validation issue was addressed with improved logic. This issue is fixed in macOS High Sierra 10.13.5, Security Update 2018-003 Sierra, Security Update 2018-003 El Capitan. An attacker with physical access to a device may be able to elevate privileges.
Published: 2021-12-23T19:48:27.000Z
Updated: 2024-08-05T05:18:26.523Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-7668 |
vulnerable | 2026-06-03 14:37:37.758638 |
Details available
The HTTP strict parsing changes added in Apache httpd 2.2.32 and 2.4.24 introduced a bug in token list parsing, which allows ap_find_token() to search past the end of its input string. By maliciously crafting a sequence of request headers, an attacker may be able to cause a segmentation fault, or to force ap_find_token() to return an incorrect value.
Published: 2017-06-20T01:00:00.000Z
Updated: 2024-08-05T16:12:28.098Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-13908 |
vulnerable | 2026-06-03 14:36:38.171482 |
Details available
An issue in handling file permissions was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan, macOS High Sierra 10.13. A local attacker may be able to execute non-executable text files via an SMB share.
Published: 2021-12-23T19:48:30.000Z
Updated: 2024-08-05T19:13:41.641Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-13907 |
vulnerable | 2026-06-03 14:36:38.171020 |
Details available
A state management issue was addressed with improved state validation. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan. The screen lock may unexpectedly remain unlocked.
Published: 2021-12-23T19:48:25.000Z
Updated: 2024-08-05T19:13:41.546Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-13906 |
vulnerable | 2026-06-03 14:36:38.170562 |
Details available
A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan, macOS High Sierra 10.13. A malicious application may be able to elevate privileges.
Published: 2021-12-23T19:48:25.000Z
Updated: 2024-08-05T19:13:41.509Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-13905 |
vulnerable | 2026-06-03 14:36:38.168291 |
Details available
A race condition was addressed with additional validation. This issue is fixed in tvOS 11.2, iOS 11.2, macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan, watchOS 4.2. An application may be able to gain elevated privileges.
Published: 2021-12-23T19:48:22.000Z
Updated: 2024-08-05T19:13:41.368Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-13892 |
vulnerable | 2026-06-03 14:36:38.158996 |
Details available
An issue existed in the handling of Contact sharing. This issue was addressed with improved handling of user information. This issue is fixed in macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan. Sharing contact information may lead to unexpected data sharing.
Published: 2021-12-23T19:48:24.000Z
Updated: 2024-08-05T19:13:41.356Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.