CVSS: 7.0EPSS: 0%CPEs: 1EXPL: 0CVE-2022-26743 – Apple Security Advisory 2022-05-16-2
https://notcve.org/view.php?id=CVE-2022-26743
17 May 2022 — Un atacante que ya ha logrado una ejecución de código en macOS Recovery puede ser capaz de escalar los privilegios del kernel macOS Monterey 12.4 addresses buffer overflow, bypass, code execution, denial of service, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213257 • CWE-787: Out-of-bounds Write •
CVSS: 4.7EPSS: 0%CPEs: 5EXPL: 0CVE-2022-26765 – Apple Security Advisory 2022-05-16-1
https://notcve.org/view.php?id=CVE-2022-26765
17 May 2022 — Un atacante malicioso con capacidad de lectura y escritura arbitraria puede ser capaz de omitir la autenticación de punteros macOS Monterey 12.4 addresses buffer overflow, bypass, code execution, denial of service, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213253 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-26767 – Apple Security Advisory 2022-05-16-2
https://notcve.org/view.php?id=CVE-2022-26767
17 May 2022 — Una aplicación maliciosa puede ser capaz de omitir las preferencias de privacidad macOS Monterey 12.4 addresses buffer overflow, bypass, code execution, denial of service, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213256 • CWE-863: Incorrect Authorization •
CVSS: 5.5EPSS: 0%CPEs: 20EXPL: 0CVE-2022-22663 – Apple Security Advisory 2022-05-16-4
https://notcve.org/view.php?id=CVE-2022-22663
17 May 2022 — Una aplicación maliciosa puede omitir las comprobaciones de Gatekeeper Security Update 2022-004 Catalina addresses bypass, code execution, denial of service, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213182 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-22673 – Apple Security Advisory 2022-05-16-1
https://notcve.org/view.php?id=CVE-2022-22673
17 May 2022 — El procesamiento de una entrada grande puede conllevar a una denegación de servicio iOS 15.5 and iPadOS 15.5 addresses bypass, code execution, denial of service, integer overflow, out of bounds access, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213258 •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2022-26693 – Apple Security Advisory 2022-05-16-2
https://notcve.org/view.php?id=CVE-2022-26693
17 May 2022 — Un plugin puede heredar los permisos de la aplicación y acceder a los datos del usuario macOS Monterey 12.4 addresses buffer overflow, bypass, code execution, denial of service, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213257 •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2022-26694 – Apple Security Advisory 2022-05-16-2
https://notcve.org/view.php?id=CVE-2022-26694
17 May 2022 — Un plugin puede heredar los permisos de la aplicación y acceder a los datos del usuario macOS Monterey 12.4 addresses buffer overflow, bypass, code execution, denial of service, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213257 •
CVSS: 7.6EPSS: 0%CPEs: 5EXPL: 0CVE-2022-26701 – Apple Security Advisory 2022-05-16-1
https://notcve.org/view.php?id=CVE-2022-26701
17 May 2022 — Una aplicación puede ser capaz de ejecutar código arbitrario con privilegios del kernel macOS Monterey 12.4 addresses buffer overflow, bypass, code execution, denial of service, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213254 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0CVE-2022-26702 – Apple Security Advisory 2023-03-27-5
https://notcve.org/view.php?id=CVE-2022-26702
17 May 2022 — Una aplicación puede ser capaz de ejecutar código arbitrario con privilegios del kernel iOS 15.5 and iPadOS 15.5 addresses bypass, code execution, denial of service, integer overflow, out of bounds access, out of bounds write, and use-after-free vulnerabilities. • http://seclists.org/fulldisclosure/2023/Mar/21 • CWE-416: Use After Free •
CVSS: 9.3EPSS: 0%CPEs: 19EXPL: 0CVE-2022-26714 – Apple Security Advisory 2022-05-16-4
https://notcve.org/view.php?id=CVE-2022-26714
17 May 2022 — Una aplicación puede ser capaz de ejecutar código arbitrario con privilegios del kernel macOS Monterey 12.4 addresses buffer overflow, bypass, code execution, denial of service, integer overflow, out of bounds access, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213253 • CWE-787: Out-of-bounds Write •