Apple

macOS

2323 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2022-1619

Exploit
  • EPSS 0.71%
  • Veröffentlicht 08.05.2022 10:15:07
  • Zuletzt bearbeitet 21.11.2024 06:41:06

Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub repository vim/vim prior to 8.2.4899. This vulnerabilities are capable of crashing software, modify memory, and possible remote execution

7.8

CVE-2022-1616

Exploit
  • EPSS 0.1%
  • Veröffentlicht 07.05.2022 19:15:07
  • Zuletzt bearbeitet 21.11.2024 06:41:05

Use after free in append_command in GitHub repository vim/vim prior to 8.2.4895. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution

5.5

CVE-2022-1420

Exploit
  • EPSS 0.06%
  • Veröffentlicht 21.04.2022 11:15:08
  • Zuletzt bearbeitet 21.11.2024 06:40:41

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4774.

7.1

CVE-2022-29458

Exploit
  • EPSS 0.04%
  • Veröffentlicht 18.04.2022 21:15:07
  • Zuletzt bearbeitet 09.06.2025 15:15:27

ncurses 6.3 before patch 20220416 has an out-of-bounds read and segmentation violation in convert_strings in tinfo/read_entry.c in the terminfo library.

7.8

CVE-2022-1381

Exploit
  • EPSS 0.05%
  • Veröffentlicht 18.04.2022 01:15:10
  • Zuletzt bearbeitet 21.11.2024 06:40:36

global heap buffer overflow in skip_range in GitHub repository vim/vim prior to 8.2.4763. This vulnerability is capable of crashing software, Bypass Protection Mechanism, Modify Memory, and possible remote execution

5.4

CVE-2022-29046

  • EPSS 13.68%
  • Veröffentlicht 12.04.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 06:58:24

Jenkins Subversion Plugin 2.15.3 and earlier does not escape the name and description of List Subversion tags (and more) parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attacker...

4.3

CVE-2022-29048

  • EPSS 0.13%
  • Veröffentlicht 12.04.2022 20:15:09
  • Zuletzt bearbeitet 21.11.2024 06:58:24

A cross-site request forgery (CSRF) vulnerability in Jenkins Subversion Plugin 2.15.3 and earlier allows attackers to connect to an attacker-specified URL.

7.5

CVE-2022-24070

  • EPSS 0.56%
  • Veröffentlicht 12.04.2022 18:15:09
  • Zuletzt bearbeitet 21.11.2024 06:49:45

Subversion's mod_dav_svn is vulnerable to memory corruption. While looking up path-based authorization rules, mod_dav_svn servers may attempt to use memory which has already been freed. Affected Subversion mod_dav_svn servers 1.10.0 through 1.14.1 (i...

4.3

CVE-2021-28544

Exploit
  • EPSS 0.29%
  • Veröffentlicht 12.04.2022 18:15:08
  • Zuletzt bearbeitet 21.11.2024 05:59:49

Apache Subversion SVN authz protected copyfrom paths regression Subversion servers reveal 'copyfrom' paths that should be hidden according to configured path-based authorization (authz) rules. When a node has been copied from a protected location, us...

7.5

CVE-2022-24836

  • EPSS 1.5%
  • Veröffentlicht 11.04.2022 22:15:07
  • Zuletzt bearbeitet 21.11.2024 06:51:12

Nokogiri is an open source XML and HTML library for Ruby. Nokogiri `< v1.13.4` contains an inefficient regular expression that is susceptible to excessive backtracking when attempting to detect encoding in HTML documents. Users are advised to upgrade...