CVE-2012-3719

CVE Database · CVE-2012-3719

CVE-2012-3719

· N/AModified

CVSS v3.1

N/A

EPSS

1.90%

Published

Sep 20, 2012

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Mail in Apple Mac OS X before 10.7.5 does not properly handle embedded web plugins, which allows remote attackers to execute arbitrary plugin code via an e-mail message that triggers the loading of a third-party plugin.

Weaknesses (CWE)

CWE-20

Affected Products (142)

apple · mac_os_xvulnerable

· mac_os_x

References (6)

http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html

Vendor Advisory

http://support.apple.com/kb/HT5501

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/78751

http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html

Vendor Advisory

http://support.apple.com/kb/HT5501

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/78751

KEV Catalog EPSS Scores Vendors All CVEs

apple · mac_os_xvulnerable