Apple » Garageband : Security Vulnerabilities, CVEs, CVSS score >= 5
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Logic Pro 10.7.3, GarageBand 10.4.6, macOS Monterey 12.3. Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution.
Max CVSS
7.8
EPSS Score
0.07%
Published
2022-03-18
Updated
2022-03-25
A memory initialization issue was addressed with improved memory handling. This issue is fixed in Logic Pro 10.7.3, GarageBand 10.4.6, macOS Monterey 12.3. Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution.
Max CVSS
7.8
EPSS Score
0.07%
Published
2022-03-18
Updated
2022-03-25
This issue was addressed by removing additional entitlements. This issue is fixed in GarageBand 10.4.3. A local attacker may be able to read sensitive information.
Max CVSS
5.5
EPSS Score
0.04%
Published
2021-09-08
Updated
2021-09-17
An issue was discovered in certain Apple products. GarageBand before 10.1.6 is affected. The issue involves the "Projects" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted GarageBand project file.
Max CVSS
7.8
EPSS Score
1.17%
Published
2017-02-20
Updated
2017-07-25
An issue was discovered in certain Apple products. GarageBand before 10.1.5 is affected. Logic Pro X before 10.3 is affected. The issue involves the "Projects" component, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted GarageBand project file.
Max CVSS
8.8
EPSS Score
1.04%
Published
2017-02-20
Updated
2017-07-26
5 vulnerabilities found