CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-27915 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-27915
16 Dec 2020 —  Una aplicación maliciosa puede ser capaz de ejecutar código arbitrario con privilegios system. macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT211931 • CWE-787: Out-of-bounds Write •
CVSS: 4.5EPSS: 0%CPEs: 21EXPL: 0CVE-2020-9978 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-9978
16 Dec 2020 —  Un atacante en una posición de red privilegiada puede ser capaz de alterar inesperadamente el estado de la aplicación. macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT211843 •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-27921 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-27921
16 Dec 2020 —  Una aplicación puede ser capaz de ejecutar código arbitrario con privilegios de kernel. macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT211931 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2020-27922 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-27922
16 Dec 2020 —  El procesamiento de un archivo fuente diseñado maliciosamente puede conllevar a una ejecución de código arbitraria. macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT211928 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-10008 – Apple Security Advisory 2020-12-14-4
https://notcve.org/view.php?id=CVE-2020-10008
16 Dec 2020 —  Una aplicación maliciosa con privilegios root puede ser capaz de acceder a información privada. macOS Big Sur 11.0.1 addresses buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, path sanitization, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT211931 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2020-27908 – Apple macOS AudioCodecs MP4 File Parsing Signed to Unsigned Conversion Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2020-27908
16 Dec 2020 — An attacker can leverage this vulnerability to execute code in the context of the current process. macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT211928 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-27051
https://notcve.org/view.php?id=CVE-2020-27051
15 Dec 2020 — In NFA_RwI93WriteMultipleBlocks of nfa_rw_api.cc, there is a possible out of bounds write due to an integer overflow. • https://source.android.com/security/bulletin/pixel/2020-12-01 • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-0495
https://notcve.org/view.php?id=CVE-2020-0495
15 Dec 2020 — In decode_Huffman of JBig2_SddProc.cpp, there is a possible out of bounds write due to an integer overflow. • https://source.android.com/security/bulletin/pixel/2020-12-01 • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-35457
https://notcve.org/view.php?id=CVE-2020-35457
14 Dec 2020 — GNOME GLib before 2.65.3 has an integer overflow, that might lead to an out-of-bounds write, in g_option_group_add_entries. • https://gitlab.gnome.org/GNOME/glib/-/commit/63c5b62f0a984fac9a9700b12f54fe878e016a5d • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 1CVE-2020-0458
https://notcve.org/view.php?id=CVE-2020-0458
14 Dec 2020 — In SPDIFEncoder::writeBurstBufferBytes and related methods of SPDIFEncoder.cpp, there is a possible out of bounds write due to an integer overflow. • https://github.com/nanopathi/system_media_AOSP10_r33_CVE-2020-0458 • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •