cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2010-1816,https://securityvulnerability.io/vulnerability/CVE-2010-1816,,Buffer overflow in ImageIO in Apple Mac OS X 10.6 through 10.6.3 and Mac OS X Server 10.6 through 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a crafted image.,Apple,"Mac Os X Server,Mac Os X",7.8,HIGH,0.008329999633133411,false,,false,false,false,,,false,false,,2017-04-13T15:00:00.000Z,0
CVE-2010-1821,https://securityvulnerability.io/vulnerability/CVE-2010-1821,,Apple Mac OS X 10.6 through 10.6.3 and Mac OS X Server 10.6 through 10.6.3 allows local users to obtain system privileges.,Apple,"Mac Os X Server,Mac Os X",7.8,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2017-04-13T15:00:00.000Z,0
CVE-2016-4694,https://securityvulnerability.io/vulnerability/CVE-2016-4694,,"The Apache HTTP Server in Apple OS X before 10.12 and OS X Server before 5.2 follows RFC 3875 section 4.1.18 and therefore does not protect applications from the presence of untrusted CGI client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect an application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, aka an ""httpoxy"" issue, a related issue to CVE-2016-5387.",Apple,"Mac Os X,Os X Server",9.1,CRITICAL,0.00800000037997961,false,,false,false,false,,,false,false,,2016-09-25T10:00:00.000Z,0
CVE-2016-1774,https://securityvulnerability.io/vulnerability/CVE-2016-1774,,"The Time Machine server in Server App in Apple OS X Server before 5.1 does not notify the user about ignored permissions during a backup, which makes it easier for remote attackers to obtain sensitive information in opportunistic circumstances by reading backup data that lacks intended restrictions.",Apple,Mac Os X Server,5.3,MEDIUM,0.0034000000450760126,false,,false,false,false,,,false,false,,2016-03-24T01:00:00.000Z,0
CVE-2016-1776,https://securityvulnerability.io/vulnerability/CVE-2016-1776,,"Web Server in Apple OS X Server before 5.1 does not properly restrict access to .DS_Store and .htaccess files, which allows remote attackers to obtain sensitive configuration information via an HTTP request.",Apple,Mac Os X Server,5.3,MEDIUM,0.0034000000450760126,false,,false,false,false,,,false,false,,2016-03-24T01:00:00.000Z,0
CVE-2016-1787,https://securityvulnerability.io/vulnerability/CVE-2016-1787,,Wiki Server in Apple OS X Server before 5.1 allows remote attackers to obtain sensitive information from Wiki pages via unspecified vectors.,Apple,Mac Os X Server,5.3,MEDIUM,0.0034000000450760126,false,,false,false,false,,,false,false,,2016-03-24T01:00:00.000Z,0
CVE-2016-1777,https://securityvulnerability.io/vulnerability/CVE-2016-1777,,"Web Server in Apple OS X Server before 5.1 supports the RC4 algorithm, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified vectors.",Apple,Mac Os X Server,7.5,HIGH,0.002469999948516488,false,,false,false,false,,,false,false,,2016-03-24T01:00:00.000Z,0
CVE-2015-7031,https://securityvulnerability.io/vulnerability/CVE-2015-7031,,"The Web Service component in Apple OS X Server before 5.0.15 omits an unspecified HTTP header configuration, which allows remote attackers to bypass intended access restrictions via unknown vectors.",Apple,Mac Os X Server,,,0.002689999993890524,false,,false,false,false,,,false,false,,2015-10-23T10:00:00.000Z,0
CVE-2015-5911,https://securityvulnerability.io/vulnerability/CVE-2015-5911,,Multiple unspecified vulnerabilities in Twisted in Wiki Server in Apple OS X Server before 5.0.3 allow attackers to have an unknown impact via an XML document.,Apple,Mac Os X Server,,,0.003389999968931079,false,,false,false,false,,,false,false,,2015-09-18T10:00:00.000Z,0
CVE-2014-3583,https://securityvulnerability.io/vulnerability/CVE-2014-3583,,The handle_headers function in mod_proxy_fcgi.c in the mod_proxy_fcgi module in the Apache HTTP Server 2.4.10 allows remote FastCGI servers to cause a denial of service (buffer over-read and daemon crash) via long response headers.,Apple,"Mac Os X,Os X Server",,,0.05280999839305878,false,,false,false,false,,,false,false,,2014-12-15T17:27:00.000Z,0
CVE-2014-4350,https://securityvulnerability.io/vulnerability/CVE-2014-4350,,Buffer overflow in QT Media Foundation in Apple OS X before 10.9.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MIDI file.,Apple,"Mac Os X,Mac Os X Server",,,0.8657500147819519,false,,false,false,false,,,false,false,,2014-09-19T10:00:00.000Z,0
CVE-2014-1391,https://securityvulnerability.io/vulnerability/CVE-2014-1391,,QT Media Foundation in Apple OS X before 10.9.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file with RLE encoding.,Apple,"Mac Os X,Mac Os X Server",,,0.042729999870061874,false,,false,false,false,,,false,false,,2014-09-19T10:00:00.000Z,0
CVE-2014-1370,https://securityvulnerability.io/vulnerability/CVE-2014-1370,,The byte-swapping implementation in copyfile in Apple OS X before 10.9.4 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds memory access and application crash) via a crafted AppleDouble file in a ZIP archive.,Apple,"Mac Os X,Mac Os X Server",,,0.06864999979734421,false,,false,false,false,,,false,false,,2014-07-01T10:00:00.000Z,0
CVE-2014-1371,https://securityvulnerability.io/vulnerability/CVE-2014-1371,,Array index error in Dock in Apple OS X before 10.9.4 allows attackers to execute arbitrary code or cause a denial of service (incorrect function-pointer dereference and application crash) by leveraging access to a sandboxed application for sending a message.,Apple,"Mac Os X,Mac Os X Server",,,0.0770300030708313,false,,false,false,false,,,false,false,,2014-07-01T10:00:00.000Z,0
CVE-2014-0067,https://securityvulnerability.io/vulnerability/CVE-2014-0067,,"The ""make check"" command for the test suites in PostgreSQL 9.3.3 and earlier does not properly invoke initdb to specify the authentication requirements for a database cluster to be used for the tests, which allows local users to gain privileges by leveraging access to this cluster.",Apple,"Mac Os X,Mac Os X Server",,,0.0004199999966658652,false,,false,false,false,,,false,false,,2014-03-31T14:58:00.000Z,0
CVE-2014-1259,https://securityvulnerability.io/vulnerability/CVE-2014-1259,,Buffer overflow in File Bookmark in Apple OS X before 10.9.2 allows attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted filename.,Apple,"Mac Os X,Mac Os X Server",,,0.0008099999977275729,false,,false,false,false,,,false,false,,2014-02-27T01:00:00.000Z,0
CVE-2014-1265,https://securityvulnerability.io/vulnerability/CVE-2014-1265,,The systemsetup program in the Date and Time subsystem in Apple OS X before 10.9.2 allows local users to bypass intended access restrictions by changing the current time on the system clock.,Apple,"Mac Os X,Mac Os X Server",,,0.0004199999966658652,false,,false,false,false,,,false,false,,2014-02-27T01:00:00.000Z,0
CVE-2014-1268,https://securityvulnerability.io/vulnerability/CVE-2014-1268,,"WebKit, as used in Apple Safari before 6.1.2 and 7.x before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-1269 and CVE-2014-1270.",Apple,"Safari,Mac Os X,Mac Os X Server,Webkit",,,0.00774999987334013,false,,false,false,false,,,false,false,,2014-02-27T01:00:00.000Z,0
CVE-2014-1270,https://securityvulnerability.io/vulnerability/CVE-2014-1270,,"WebKit, as used in Apple Safari before 6.1.2 and 7.x before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-1268 and CVE-2014-1269.",Apple,"Safari,Mac Os X,Mac Os X Server,Webkit",,,0.008910000324249268,false,,false,false,false,,,false,false,,2014-02-27T01:00:00.000Z,0
CVE-2014-1256,https://securityvulnerability.io/vulnerability/CVE-2014-1256,,Buffer overflow in Apple Type Services (ATS) in Apple OS X before 10.9.2 allows attackers to bypass the App Sandbox protection mechanism via crafted Mach messages.,Apple,"Mac Os X,Mac Os X Server",,,0.0021699999924749136,false,,false,false,false,,,false,false,,2014-02-27T01:00:00.000Z,0
CVE-2014-1269,https://securityvulnerability.io/vulnerability/CVE-2014-1269,,"WebKit, as used in Apple Safari before 6.1.2 and 7.x before 7.0.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than CVE-2014-1268 and CVE-2014-1270.",Apple,"Safari,Mac Os X,Mac Os X Server,Webkit",,,0.008910000324249268,false,,false,false,false,,,false,false,,2014-02-27T01:00:00.000Z,0
CVE-2013-0982,https://securityvulnerability.io/vulnerability/CVE-2013-0982,,"The Private Browsing feature in CFNetwork in Apple Mac OS X before 10.8.4 does not prevent storage of permanent cookies upon exit from Safari, which might allow physically proximate attackers to bypass cookie-based authentication by leveraging an unattended workstation.",Apple,"Mac Os X Server,Mac Os X",,,0.0004400000034365803,false,,false,false,false,,,false,false,,2013-06-05T14:39:00.000Z,0
CVE-2013-0975,https://securityvulnerability.io/vulnerability/CVE-2013-0975,,Buffer overflow in QuickDraw Manager in Apple Mac OS X before 10.8.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT image.,Apple,"Mac Os X Server,Mac Os X",,,0.05358000099658966,false,,false,false,false,,,false,false,,2013-06-05T14:39:00.000Z,0
CVE-2013-0990,https://securityvulnerability.io/vulnerability/CVE-2013-0990,,"SMB in Apple Mac OS X before 10.8.4, when file sharing is enabled, allows remote authenticated users to create or modify files outside of a shared directory via unspecified vectors.",Apple,"Mac Os X Server,Mac Os X",,,0.0016599999507889152,false,,false,false,false,,,false,false,,2013-06-05T14:39:00.000Z,0
CVE-2013-1024,https://securityvulnerability.io/vulnerability/CVE-2013-1024,,"CoreMedia Playback in Apple Mac OS X before 10.8.4 does not properly initialize memory during the processing of text tracks, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file.",Apple,"Mac Os X,Mac Os X Server",,,0.008589999750256538,false,,false,false,false,,,false,false,,2013-06-05T10:00:00.000Z,0