CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 2CVE-2020-27930 – Apple Multiple Products Memory Corruption Vulnerability
https://notcve.org/view.php?id=CVE-2020-27930
09 Nov 2020 —  El procesamiento de una fuente diseñada maliciosamente puede conllevar a una ejecución de código arbitraria macOS Big Sur 11.0.1 addresses buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, path sanitization, spoofing, and use-after-free vulnerabilities. • https://packetstorm.news/files/id/161294 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 33EXPL: 0CVE-2020-10011 – Apple Security Advisory 2020-12-14-4
https://notcve.org/view.php?id=CVE-2020-10011
09 Nov 2020 —  El procesamiento de un archivo USD diseñado maliciosamente puede conllevar a la finalización inesperada de la aplicación o una ejecución de código arbitraria macOS Big Sur 11.0.1 addresses buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, path sanitization, spoofing, and use-after-free vulnerabilities. • http://seclists.org/fulldisclosure/2020/Dec/32 • CWE-125: Out-of-bounds Read •
CVSS: 9.3EPSS: 0%CPEs: 5EXPL: 0CVE-2020-27910 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-27910
09 Nov 2020 —  El procesamiento de un archivo de audio diseñado maliciosamente puede conllevar a una ejecución de código arbitraria macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • http://seclists.org/fulldisclosure/2020/Dec/26 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2020-27927 – Apple Security Advisory 2020-12-14-4
https://notcve.org/view.php?id=CVE-2020-27927
09 Nov 2020 —  El procesamiento de un archivo fuente diseñado maliciosamente puede conllevar a una ejecución de código arbitraria macOS Big Sur 11.0.1 addresses buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, path sanitization, spoofing, and use-after-free vulnerabilities. • http://seclists.org/fulldisclosure/2020/Dec/32 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-27926 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-27926
09 Nov 2020 —  El procesamiento de contenido web diseñado maliciosamente puede conllevar a una ejecución de código arbitraria macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • http://seclists.org/fulldisclosure/2020/Dec/26 • CWE-416: Use After Free •
CVSS: 9.3EPSS: 0%CPEs: 7EXPL: 0CVE-2020-27917 – Apple Security Advisory 2020-12-14-4
https://notcve.org/view.php?id=CVE-2020-27917
09 Nov 2020 —  El procesamiento de contenido web diseñado maliciosamente puede conllevar a una ejecución de código macOS Big Sur 11.0.1 addresses buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, path sanitization, spoofing, and use-after-free vulnerabilities. • http://seclists.org/fulldisclosure/2020/Dec/32 • CWE-416: Use After Free •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2020-9974 – Apple Security Advisory 2020-12-14-3
https://notcve.org/view.php?id=CVE-2020-9974
09 Nov 2020 — Una aplicación maliciosa puede ser capaz de determinar una disposición de la memoria del Kernel macOS Big Sur 11.1, Security Update 2020-001 Catalina, and Security Update 2020-007 Mojave address buffer overflow, bypass, code execution, denial of service, information leakage, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • http://seclists.org/fulldisclosure/2020/Dec/26 •
CVSS: 7.5EPSS: 0%CPEs: 13EXPL: 0CVE-2020-28196 – krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1_encode.c may lead to DoS
https://notcve.org/view.php?id=CVE-2020-28196
06 Nov 2020 — Issues addressed include buffer overflow, denial of service, and integer overflow vulnerabilities. • https://github.com/krb5/krb5/commit/57415dda6cf04e73ffc3723be518eddfae599bfd • CWE-674: Uncontrolled Recursion •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2020-25661 – kernel: Red Hat only CVE-2020-12351 regression
https://notcve.org/view.php?id=CVE-2020-25661
04 Nov 2020 — Issues addressed include bypass, denial of service, integer overflow, man-in-the-middle, and memory leak vulnerabilities. • https://access.redhat.com/security/cve/CVE-2020-12351 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-10774 – kernel: possibility of memory disclosure when reading the file /proc/sys/kernel/rh_features
https://notcve.org/view.php?id=CVE-2020-10774
04 Nov 2020 — Issues addressed include bypass, denial of service, integer overflow, man-in-the-middle, and memory leak vulnerabilities. • https://bugzilla.redhat.com/show_bug.cgi?id=1846964 • CWE-805: Buffer Access with Incorrect Length Value CWE-909: Missing Initialization of Resource •