NotCVE - vendor:"Apple" product:"Ipados" version:"

Page 102 of 1135 results (0.031 seconds)

CVSS: 7.8EPSS: 0%CPEs: 26EXPL: 1

CVE-2020-9844 – Apple Security Advisory 2020-05-26-3

https://notcve.org/view.php?id=CVE-2020-9844

29 May 2020 — A double free issue was addressed with improved memory management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5. A remote attacker may be able to cause unexpected system termination or corrupt kernel memory. Se abordó un problema doble liberación con una administración de la memoria mejorada. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5, macOS Catalina versión 10.15.5. • https://packetstorm.news/files/id/158225 • CWE-415: Double Free •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0

CVE-2020-9823 – Apple Security Advisory 2020-05-26-1

https://notcve.org/view.php?id=CVE-2020-9823

29 May 2020 — This issue was addressed with improved checks. This issue is fixed in iOS 13.5 and iPadOS 13.5. Users removed from an iMessage conversation may still be able to alter state. Este problema se abordó con unas comprobaciones mejoradas. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5. • https://support.apple.com/HT211168 •

CVSS: 9.3EPSS: 0%CPEs: 27EXPL: 0

CVE-2020-9830 – Apple Security Advisory 2020-05-26-3

https://notcve.org/view.php?id=CVE-2020-9830

29 May 2020 — A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de corrupción de la memoria con una administración de estado mejorada. Este problema es corregido en iOS versión 13.5 and iPadOS versión 13.5, macOS Catalina versión 10.15.5 Una aplicación puede ser capaz de ejecutar código arbitrario con privilegios de kernel macOS C... • https://support.apple.com/HT211170 • CWE-787: Out-of-bounds Write •

CVSS: 9.3EPSS: 0%CPEs: 8EXPL: 0

CVE-2020-9790 – Apple Security Advisory 2020-05-26-10

https://notcve.org/view.php?id=CVE-2020-9790

29 May 2020 — An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing a maliciously crafted image may lead to arbitrary code execution. Se abordó un problema de escritura fuera de límites con una comprobación de límites mejorada. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5, macOS Catalina ver... • https://support.apple.com/HT211168 • CWE-787: Out-of-bounds Write •

CVSS: 8.8EPSS: 3%CPEs: 4EXPL: 0

CVE-2020-9818 – Apple iOS, iPadOS, and watchOS Out-of-Bounds Write Vulnerability

https://notcve.org/view.php?id=CVE-2020-9818

29 May 2020 — An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, iOS 12.4.7, watchOS 6.2.5. Processing a maliciously crafted mail message may lead to unexpected memory modification or application termination. Se abordó un problema de escritura fuera de límites con una comprobación de límites mejorada. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5, iOS 12.4.7, watchOS versión 6.2.5. • https://support.apple.com/HT211168 • CWE-787: Out-of-bounds Write •

CVSS: 4.3EPSS: 0%CPEs: 5EXPL: 0

CVE-2020-9819 – Apple iOS, iPadOS, and watchOS Memory Corruption Vulnerability

https://notcve.org/view.php?id=CVE-2020-9819

29 May 2020 — A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 13.5 and iPadOS 13.5, iOS 12.4.7, watchOS 6.2.5, watchOS 5.3.7. Processing a maliciously crafted mail message may lead to heap corruption. Se abordó un problema de consumo de memoria con un manejo de la memoria mejorado. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5, iOS 12.4.7, watchOS versión 6.2.5, watchOS 5.3.7. • https://support.apple.com/HT211168 • CWE-787: Out-of-bounds Write •

CVSS: 8.8EPSS: 0%CPEs: 8EXPL: 0

CVE-2020-9800 – Apple Safari HasIndexedProperty Type Confusion Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2020-9800

28 May 2020 — A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordó un problema de confusión de tipos con un manejo de la memoria mejorado. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5, tvOS versión 13.4.5, watchOS versión 6.2.... • https://support.apple.com/HT211168 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •

CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 1

CVE-2020-9839 – Apple macOS cfprefsd Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability

https://notcve.org/view.php?id=CVE-2020-9839

28 May 2020 — A race condition was addressed with improved state handling. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5. An application may be able to gain elevated privileges. Se abordó una condición de carrera con un manejo del estado mejorado. Este problema es corregido en iOS versión 13.5 y iPadOS versión 13.5, macOS Catalina versión 10.15.5, tvOS versión 13.4.5, watchOS versión 6.2.5. • https://packetstorm.news/files/id/159084 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •

CVSS: 7.0EPSS: 0%CPEs: 25EXPL: 0

CVE-2020-13630 – sqlite: Use-after-free in fts3EvalNextRow in ext/fts3/fts3.c

https://notcve.org/view.php?id=CVE-2020-13630

27 May 2020 — ext/fts3/fts3.c in SQLite before 3.32.0 has a use-after-free in fts3EvalNextRow, related to the snippet feature. El archivo ext/fts3/fts3.c en SQLite versiones anteriores a la versión 3.32.0, tiene un uso de la memoria previamente liberada en la función fts3EvalNextRow, relacionado con la funcionalidad snippet. A use-after-free vulnerability was found in the SQLite FTS3 extension module in the way it implemented the snippet function. This flaw allows an attacker who can execute SQL statements to crash the a... • http://seclists.org/fulldisclosure/2020/Dec/32 • CWE-416: Use After Free •

CVSS: 5.5EPSS: 0%CPEs: 24EXPL: 0

CVE-2020-13631 – sqlite: Virtual table can be renamed into the name of one of its shadow tables

https://notcve.org/view.php?id=CVE-2020-13631

27 May 2020 — SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c. SQLite versiones anteriores a la versión 3.32.0, permite que una tabla virtual sea renombrada con el nombre de una de sus tablas shadow, relacionada con los archivos alter.c y build.c. A flaw was found in the virtual table implementation of SQLite. This flaw allows an attacker who can execute SQL statements to rename a virtual table to the name of one of its shadow tables, leadi... • http://seclists.org/fulldisclosure/2020/Dec/32 • CWE-20: Improper Input Validation •

1...100 101 102 103 104