Apple

macOS

2458 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2022-22592

  • EPSS 0.18%
  • Veröffentlicht 18.03.2022 18:15:12
  • Zuletzt bearbeitet 21.11.2024 06:47:05

A logic issue was addressed with improved state management. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. Processing maliciously crafted web content may prevent Content Security Policy from...

9.3

CVE-2022-22593

  • EPSS 1.31%
  • Veröffentlicht 18.03.2022 18:15:12
  • Zuletzt bearbeitet 21.11.2024 06:47:05

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Security Update 2022-001 Catalina, macOS Monterey 12.2, macOS Big Sur 11.6.3. A malicious application may be...

6.5

CVE-2022-22594

  • EPSS 0.22%
  • Veröffentlicht 18.03.2022 18:15:12
  • Zuletzt bearbeitet 21.11.2024 06:47:05

A cross-origin issue in the IndexDB API was addressed with improved input validation. This issue is fixed in iOS 15.3 and iPadOS 15.3, watchOS 8.4, tvOS 15.3, Safari 15.3, macOS Monterey 12.2. A website may be able to track sensitive user information...

7.8

CVE-2022-22597

  • EPSS 0.37%
  • Veröffentlicht 18.03.2022 18:15:12
  • Zuletzt bearbeitet 21.11.2024 06:47:05

A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.6.5, macOS Monterey 12.3, Security Update 2022-003 Catalina. Processing a maliciously crafted file may lead to arbitrary code execution.

7.8

CVE-2021-30771

  • EPSS 0.41%
  • Veröffentlicht 18.03.2022 18:15:11
  • Zuletzt bearbeitet 21.11.2024 06:04:40

An out-of-bounds write was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.4, iOS 14.6 and iPadOS 14.6, watchOS 7.5, tvOS 14.6. Processing a maliciously crafted font file may lead to arbitrary code execution.

7.8

CVE-2022-0943

Exploit
  • EPSS 0.22%
  • Veröffentlicht 14.03.2022 21:15:07
  • Zuletzt bearbeitet 21.11.2024 06:39:42

Heap-based Buffer Overflow occurs in vim in GitHub repository vim/vim prior to 8.2.4563.

7.5

CVE-2022-22719

  • EPSS 32.2%
  • Veröffentlicht 14.03.2022 11:15:09
  • Zuletzt bearbeitet 21.11.2024 06:47:18

A carefully crafted request body can cause a read to a random memory area which could cause the process to crash. This issue affects Apache HTTP Server 2.4.52 and earlier.

9.8

CVE-2022-22720

  • EPSS 33.37%
  • Veröffentlicht 14.03.2022 11:15:09
  • Zuletzt bearbeitet 21.11.2024 06:47:18

Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling

9.1

CVE-2022-22721

  • EPSS 18.95%
  • Veröffentlicht 14.03.2022 11:15:09
  • Zuletzt bearbeitet 21.11.2024 06:47:19

If LimitXMLRequestBody is set to allow request bodies larger than 350MB (defaults to 1M) on 32 bit systems an integer overflow happens which later causes out of bounds writes. This issue affects Apache HTTP Server 2.4.52 and earlier.

7.8

CVE-2022-26981

Exploit
  • EPSS 0.28%
  • Veröffentlicht 13.03.2022 18:15:08
  • Zuletzt bearbeitet 21.11.2024 06:54:54

Liblouis through 3.21.0 has a buffer overflow in compilePassOpcode in compileTranslationTable.c (called, indirectly, by tools/lou_checktable.c).