CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2021-30861 – Apple Security Advisory 2021-10-26-3
https://notcve.org/view.php?id=CVE-2021-30861
24 Aug 2021 — Una aplicación maliciosa puede omitir las comprobaciones de Gatekeeper macOS Monterey 12.0.1 addresses buffer overflow, bypass, code execution, cross site scripting, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT212869 •
CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 2CVE-2021-30860 – Apple Multiple Products Integer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2021-30860
24 Aug 2021 — An integer overflow was addressed with improved input validation. ... Apple tiene conocimiento de un informe que indica que este problema puede haber sido explotado activamente. macOS Big Sur 11.6 addresses buffer overflow, bypass, code execution, denial of service, integer overflow, out of bounds read, and use-after-free vulnerabilities. Apple iOS, iPadOS, macOS, and watchOS CoreGraphics contain an integer overflow vulnerability which may allow code execution when ... • https://github.com/jeffssh/CVE-2021-30860 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.3EPSS: 0%CPEs: 11EXPL: 0CVE-2021-30859 – Apple Security Advisory 2021-09-20-8
https://notcve.org/view.php?id=CVE-2021-30859
24 Aug 2021 — Una aplicación maliciosa puede ser capaz de ejecutar código arbitrario con privilegios del kernel macOS Big Sur 11.6 addresses buffer overflow, bypass, code execution, denial of service, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT212804 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.6EPSS: 0%CPEs: 13EXPL: 0CVE-2021-30857 – Apple Security Advisory 2021-10-26-11
https://notcve.org/view.php?id=CVE-2021-30857
24 Aug 2021 — Una aplicación maliciosa puede ser capaz de ejecutar código arbitrario con privilegios del kernel macOS Big Sur 11.6 addresses buffer overflow, bypass, code execution, denial of service, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT212804 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 5.5EPSS: 0%CPEs: 13EXPL: 0CVE-2021-30855 – Apple Security Advisory 2021-10-26-9
https://notcve.org/view.php?id=CVE-2021-30855
24 Aug 2021 — Una aplicación podría acceder a archivos restringidos macOS Big Sur 11.6 addresses buffer overflow, bypass, code execution, denial of service, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT212804 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2021-30853 – Apple Security Advisory 2021-09-20-7
https://notcve.org/view.php?id=CVE-2021-30853
24 Aug 2021 — Una aplicación maliciosa puede omitir las comprobaciones de Gatekeeper macOS Big Sur 11.6 addresses buffer overflow, bypass, code execution, denial of service, integer overflow, out of bounds read, and use-after-free vulnerabilities. • https://github.com/shubham0d/CVE-2021-30853 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 7EXPL: 1CVE-2021-38714 – Ubuntu Security Notice USN-6353-1
https://notcve.org/view.php?id=CVE-2021-38714
24 Aug 2021 — In Plib through 1.85, there is an integer overflow vulnerability that could result in arbitrary code execution. • https://lists.debian.org/debian-lts-announce/2021/10/msg00000.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 3%CPEs: 42EXPL: 0CVE-2021-3711 – SM2 Decryption Buffer Overflow
https://notcve.org/view.php?id=CVE-2021-3711
24 Aug 2021 — Issues addressed include buffer overflow, denial of service, information leakage, integer overflow, out of bounds read, and path sanitization vulnerabilities. • http://www.openwall.com/lists/oss-security/2021/08/26/2 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2021-37750 – krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field
https://notcve.org/view.php?id=CVE-2021-37750
23 Aug 2021 — Issues addressed include buffer overflow, denial of service, information leakage, integer overflow, out of bounds read, and path sanitization vulnerabilities. • https://github.com/krb5/krb5/commit/d775c95af7606a51bf79547a94fa52ddd1cb7f49 • CWE-476: NULL Pointer Dereference •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-31401
https://notcve.org/view.php?id=CVE-2021-31401
19 Aug 2021 — With a crafted IP packet, an integer overflow occurs whenever the value of the IP data length is calculated by subtracting the length of the header from the total length of the IP packet. • https://cert-portal.siemens.com/productcert/pdf/ssa-789208.pdf • CWE-20: Improper Input Validation •