NotCVE - vendor:"Apple" product:"Iphone Os" version:" >= 7.0 <= 7.1.2"

Page 120 of 2830 results (0.054 seconds)

CVSS: 3.1EPSS: 0%CPEs: 15EXPL: 5

CVE-2019-15126 – Broadcom Wi-Fi Devices - 'KR00K Information Disclosure

https://notcve.org/view.php?id=CVE-2019-15126

05 Feb 2020 — An issue was discovered on Broadcom Wi-Fi client devices. Specifically timed and handcrafted traffic can cause internal errors (related to state transitions) in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic, a different vulnerability than CVE-2019-9500, CVE-2019-9501, CVE-2019-9502, and CVE-2019-9503. Se detectó un problema en los dispositivos cliente de Broadcom Wi-Fi. Específicamente un tráfic... • https://packetstorm.news/files/id/156809 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •

CVSS: 6.1EPSS: 0%CPEs: 9EXPL: 0

CVE-2020-3867 – webkitgtk: Incorrect state management leading to universal cross-site scripting

https://notcve.org/view.php?id=CVE-2020-3867

30 Jan 2020 — A logic issue was addressed with improved state management. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, Safari 13.0.5, iTunes for Windows 12.10.4, iCloud for Windows 11.0, iCloud for Windows 7.17. Processing maliciously crafted web content may lead to universal cross site scripting. Se abordó un problema lógico con una administración de estado mejorada. Este problema es corregido en iOS versión 13.3.1 y iPadOS versión 13.3.1, tvOS versión 13.3.1, Safari versión 13.0.5, iTunes para Wind... • http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00004.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0

CVE-2020-3825 – Apple Security Advisory 2020-1-29-1

https://notcve.org/view.php?id=CVE-2020-3825

30 Jan 2020 — Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, Safari 13.0.5, iTunes for Windows 12.10.4, iCloud for Windows 11.0, iCloud for Windows 7.17. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordaron múltiples problemas de corrupción de memoria con un manejo de memoria mejorado. Este problema es corregido en iOS versión 13.3.1 y iPadOS versión 13.3.1, tvOS 13.3.1, Safari versi... • https://support.apple.com/HT210947 • CWE-787: Out-of-bounds Write •

CVSS: 6.5EPSS: 0%CPEs: 8EXPL: 0

CVE-2020-3862 – webkitgtk: Denial of service via incorrect memory handling

https://notcve.org/view.php?id=CVE-2020-3862

30 Jan 2020 — A denial of service issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, Safari 13.0.5, iTunes for Windows 12.10.4, iCloud for Windows 11.0, iCloud for Windows 7.17. A malicious website may be able to cause a denial of service. Se abordó un problema de denegación de servicio con un manejo de memoria mejorado. Este problema es corregido en iOS versión 13.3.1 y iPadOS versión 13.3.1, tvOS versión 13.3.1, Safari versión 13.0.5, iTunes para Windows... • http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00004.html •

CVSS: 8.8EPSS: 0%CPEs: 8EXPL: 0

CVE-2020-3865 – webkitgtk: Incorrect security check for a top-level DOM object context

https://notcve.org/view.php?id=CVE-2020-3865

30 Jan 2020 — Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, Safari 13.0.5, iTunes for Windows 12.10.4, iCloud for Windows 11.0, iCloud for Windows 7.17. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordaron múltiples problemas de corrupción de memoria con un manejo de memoria mejorado. Este problema es corregido en iOS versión 13.3.1 y iPadOS versión 13.3.1, tvOS versión 13.3.1, Safa... • http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00004.html • CWE-787: Out-of-bounds Write •

CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0

CVE-2020-3841 – Apple Security Advisory 2020-1-28-5

https://notcve.org/view.php?id=CVE-2020-3841

29 Jan 2020 — The issue was addressed with improved UI handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, Safari 13.0.5. A local user may unknowingly send a password unencrypted over the network. El problema se abordó con un manejo de la Interfaz de Usuario mejorado. Este problema es corregido en iOS versión 13.3.1 y iPadOS versión 13.3.1, Safari 13.0.5. • https://support.apple.com/HT210918 • CWE-319: Cleartext Transmission of Sensitive Information CWE-522: Insufficiently Protected Credentials •

CVSS: 8.8EPSS: 0%CPEs: 8EXPL: 0

CVE-2020-3846 – Apple Security Advisory 2020-1-28-2

https://notcve.org/view.php?id=CVE-2020-3846

29 Jan 2020 — A buffer overflow was addressed with improved size validation. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2, iTunes for Windows 12.10.4, iCloud for Windows 11.0, iCloud for Windows 7.17. Processing maliciously crafted XML may lead to an unexpected application termination or arbitrary code execution. Se abordó un desbordamiento del búfer con una comprobación de tamaño mejorado. Este problema es corregido en iOS versión 13.3.1 y iPadOS versión 13.3.1,... • https://support.apple.com/HT210947 • CWE-20: Improper Input Validation CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0

CVE-2020-3869 – Apple Security Advisory 2020-1-28-1

https://notcve.org/view.php?id=CVE-2020-3869

29 Jan 2020 — An issue existed in the handling of the local user's self-view. The issue was corrected with improved logic. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1. A remote FaceTime user may be able to cause the local user's camera self-view to display the incorrect camera. Se presentó un problema en el manejo de la vista propia del usuario local. • https://support.apple.com/HT210918 •

CVSS: 9.3EPSS: 0%CPEs: 5EXPL: 1

CVE-2020-3856 – Apple Security Advisory 2020-1-28-4

https://notcve.org/view.php?id=CVE-2020-3856

29 Jan 2020 — A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. Processing a maliciously crafted string may lead to heap corruption. Se abordó un problema de corrupción de memoria con una comprobación de entrada mejorada. Este problema es corregido en iOS versión 13.3.1 y iPadOS versión 13.3.1, macOS Catalina versión 10.15.3, tvOS versión 13.3.1, watchOS versión 6.1.2. • https://packetstorm.news/files/id/156333 • CWE-20: Improper Input Validation CWE-787: Out-of-bounds Write •

CVSS: 9.3EPSS: 0%CPEs: 8EXPL: 0

CVE-2020-3868 – webkitgtk: Multiple memory corruption issues leading to arbitrary code execution

https://notcve.org/view.php?id=CVE-2020-3868

29 Jan 2020 — Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, tvOS 13.3.1, Safari 13.0.5, iTunes for Windows 12.10.4, iCloud for Windows 11.0, iCloud for Windows 7.17. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordaron múltiples problemas de corrupción de memoria con un manejo de memoria mejorado . Este problema es corregido en iOS versión 13.3.1 y iPadOS versión 13.3.1, tvOS versión 13.3.1, Saf... • http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00004.html • CWE-787: Out-of-bounds Write •

1...118 119 120 121 122