Page 126 of 893 results (0.009 seconds)

CVSS: 5.5EPSS: 0%CPEs: 18EXPL: 0

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina. Processing a maliciously crafted file may disclose user information. Se abordó una lectura fuera de límites con una comprobación de límites mejorada. Este problema se corrigió en iOS versión 15.1 y iPadOS versión 15.1, macOS Monterey versión 12.0.1, tvOS versión 15.1, watchOS versión 8.1, Security Update 2021-007 Catalina. • https://support.apple.com/en-us/HT212867 https://support.apple.com/en-us/HT212869 https://support.apple.com/en-us/HT212871 https://support.apple.com/en-us/HT212874 https://support.apple.com/en-us/HT212876 https://support.apple.com/kb/HT212807 https://support.apple.com/kb/HT212872 https://www.zerodayinitiative.com/advisories/ZDI-21-1368 • CWE-125: Out-of-bounds Read •

CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0

An access issue was addressed with additional sandbox restrictions on third party applications. This issue is fixed in iOS 15 and iPadOS 15. A malicious application may be able to access some of the user's Apple ID information, or recent in-app search terms. Se ha solucionado un problema de acceso con restricciones adicionales de sandbox en aplicaciones de terceros. Este problema se ha solucionado en iOS 15 y iPadOS 15. • https://support.apple.com/en-us/HT212814 •

CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0

An issue existed in the specification for the resource timing API. The specification was updated and the updated specification was implemented. This issue is fixed in macOS Monterey 12.0.1. A malicious website may exfiltrate data cross-origin. Existía un problema en la especificación de la API de sincronización de recursos. • https://support.apple.com/en-us/HT212869 https://support.apple.com/kb/HT212814 https://support.apple.com/kb/HT212815 https://access.redhat.com/security/cve/CVE-2021-30897 https://bugzilla.redhat.com/show_bug.cgi?id=2038907 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 15.0.2 and iPadOS 15.0.2, tvOS 15.1, watchOS 8.1, macOS Monterey 12.0.1. A malicious application may be able to access information about a user's contacts. Se abordó un problema lógico con restricciones mejoradas. Este problema se corrigió en iOS versión 15.0.2 y iPadOS versión 15.0.2, tvOS versión 15.1, watchOS versión 8.1, macOS Monterey versión 12.0.1. • https://support.apple.com/en-us/HT212846 https://support.apple.com/en-us/HT212869 https://support.apple.com/en-us/HT212874 https://support.apple.com/en-us/HT212876 https://support.apple.com/kb/HT212867 https://support.apple.com/kb/HT212979 •

CVSS: 9.3EPSS: 0%CPEs: 3EXPL: 0

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 15.1 and iPadOS 15.1, tvOS 15.1. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de corrupción de memoria con una comprobación de entradas mejorada. Este problema se corrigió en iOS versión 15.1 y iPadOS versión 15.1, tvOS versión 15.1. • https://support.apple.com/en-us/HT212867 https://support.apple.com/en-us/HT212876 • CWE-787: Out-of-bounds Write •