Apple

macOS

2324 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2022-42915

  • EPSS 0.42%
  • Veröffentlicht 29.10.2022 20:15:09
  • Zuletzt bearbeitet 07.05.2025 14:15:33

curl before 7.86.0 has a double free. If curl is told to use an HTTP proxy for a transfer with a non-HTTP(S) URL, it sets up the connection to the remote server by issuing a CONNECT request to the proxy, and then tunnels the rest of the protocol thro...

7.5

CVE-2022-42916

  • EPSS 0.05%
  • Veröffentlicht 29.10.2022 02:15:09
  • Zuletzt bearbeitet 21.11.2024 07:25:35

In curl before 7.86.0, the HSTS check could be bypassed to trick it into staying with HTTP. Using its HSTS support, curl can be instructed to use HTTPS directly (instead of using an insecure cleartext HTTP step) even when HTTP is provided in the URL....

5.5

CVE-2022-1725

Exploit
  • EPSS 0.04%
  • Veröffentlicht 29.09.2022 03:15:15
  • Zuletzt bearbeitet 21.11.2024 06:41:20

NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4959.

8.8

CVE-2022-22629

  • EPSS 20.39%
  • Veröffentlicht 23.09.2022 20:15:09
  • Zuletzt bearbeitet 22.05.2025 15:15:54

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.3, Safari 15.4, watchOS 8.5, iTunes 12.12.3 for Windows, iOS 15.4 and iPadOS 15.4, tvOS 15.4. Processing maliciously crafted web content may...

7.8

CVE-2022-32814

  • EPSS 0.18%
  • Veröffentlicht 23.09.2022 20:15:09
  • Zuletzt bearbeitet 27.05.2025 15:15:25

A type confusion issue was addressed with improved state handling. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. An app may be able to execute arbitrary code with kernel privileges.

7.8

CVE-2022-32820

  • EPSS 0.08%
  • Veröffentlicht 23.09.2022 19:15:13
  • Zuletzt bearbeitet 22.05.2025 19:15:32

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. An app may be able to ex...

7.8

CVE-2022-32821

  • EPSS 0.08%
  • Veröffentlicht 23.09.2022 19:15:13
  • Zuletzt bearbeitet 22.05.2025 18:15:24

A memory corruption issue was addressed with improved validation. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. An app may be able to execute arbitrary code with kernel privileges.

5.5

CVE-2022-32823

  • EPSS 0.12%
  • Veröffentlicht 23.09.2022 19:15:13
  • Zuletzt bearbeitet 22.05.2025 18:15:24

A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. An app may be able to le...

5.5

CVE-2022-32825

  • EPSS 0.16%
  • Veröffentlicht 23.09.2022 19:15:13
  • Zuletzt bearbeitet 22.05.2025 15:15:57

The issue was addressed with improved memory handling. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5. An app may be able to disclose kernel memory.

7.8

CVE-2022-32826

  • EPSS 0.13%
  • Veröffentlicht 23.09.2022 19:15:13
  • Zuletzt bearbeitet 22.05.2025 16:15:52

An authorization issue was addressed with improved state management. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. An app may be able to gain roo...