CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2022-32845 – Apple Security Advisory 2022-07-20-6
https://notcve.org/view.php?id=CVE-2022-32845
22 Jul 2022 — This issue was addressed with improved checks. This issue is fixed in watchOS 8.7, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. An app may be able to break out of its sandbox. Se abordó este problema con comprobaciones mejoradas. Este problema se ha solucionado en watchOS 8.7, iOS 15.6 y iPadOS 15.6, macOS Monterey 12.5. • https://support.apple.com/en-us/HT213340 • CWE-693: Protection Mechanism Failure •
CVSS: 9.4EPSS: 0%CPEs: 21EXPL: 0CVE-2022-32847 – Apple Security Advisory 2022-07-20-6
https://notcve.org/view.php?id=CVE-2022-32847
22 Jul 2022 — This issue was addressed with improved checks. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. A remote user may be able to cause unexpected system termination or corrupt kernel memory. Se abordó este problema con comprobaciones mejoradas. Este problema ha sido corregido en iOS versión 15.6 y iPadOS versión 15.6, macOS Big Sur versión 11.6.8, watchOS versión 8.7, tvOS versión 15.6, macOS Monterey versión 1... • https://support.apple.com/en-us/HT213340 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 0%CPEs: 5EXPL: 0CVE-2022-32792 – webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution
https://notcve.org/view.php?id=CVE-2022-32792
22 Jul 2022 — An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordó un problema de escritura fuera de límites con una comprobación de entradas mejorada. Este problema ha sido corregido en iOS versión 15.6 y iPadOS versión 15.6, watchOS versión 8.7, tvOS versión 15.6, macOS Monterey versión 12.5, Safari ver... • https://support.apple.com/en-us/HT213340 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2022-32816 – webkitgtk: malicious content may lead to UI spoofing
https://notcve.org/view.php?id=CVE-2022-32816
22 Jul 2022 — The issue was addressed with improved UI handling. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. Visiting a website that frames malicious content may lead to UI spoofing. Se abordó este problema con un manejo de la Interfaz de Usuario mejorado. Este problema ha sido corregido en watchOS versión 8.7, tvOS versión 15.6, iOS versión 15.6 y iPadOS versión 15.6, macOS Monterey versión 12.5. • https://support.apple.com/en-us/HT213340 • CWE-451: User Interface (UI) Misrepresentation of Critical Information •
CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 0CVE-2022-32819 – Apple Security Advisory 2022-07-20-6
https://notcve.org/view.php?id=CVE-2022-32819
22 Jul 2022 — A logic issue was addressed with improved state management. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. An app may be able to gain root privileges. Se abordó un problema de lógica con una administración de estados mejorada. Este problema ha sido corregido en iOS versión 15.6 y iPadOS versión 15.6, macOS Big Sur versión 11.6.8, watchOS versión 8.7, tvOS versión 15.6, macOS Monterey versión 12.5, Securit... • https://support.apple.com/en-us/HT213340 • CWE-269: Improper Privilege Management •
CVSS: 6.3EPSS: 0%CPEs: 4EXPL: 0CVE-2022-32844 – Apple Security Advisory 2022-07-20-6
https://notcve.org/view.php?id=CVE-2022-32844
22 Jul 2022 — A race condition was addressed with improved state handling. This issue is fixed in tvOS 15.6, watchOS 8.7, iOS 15.6 and iPadOS 15.6. An app with arbitrary kernel read and write capability may be able to bypass Pointer Authentication. iOS 15.6 and iPadOS 15.6 addresses buffer overflow, bypass, code execution, information leakage, null pointer, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/HT213340 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 10.0EPSS: 2%CPEs: 31EXPL: 0CVE-2022-2294 – WebRTC Heap Buffer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2022-2294
22 Jul 2022 — Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de la pila en WebRTC en Google Chrome versiones anteriores a 103.0.5060.114, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malic... • http://www.openwall.com/lists/oss-security/2022/07/28/2 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2022-32810 – Apple Security Advisory 2022-07-20-6
https://notcve.org/view.php?id=CVE-2022-32810
22 Jul 2022 — The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.5, watchOS 8.7, iOS 15.6 and iPadOS 15.6. An app may be able to execute arbitrary code with kernel privileges. Se abordó este problema con la administración de memoria mejorada. Este problema es corregido en macOS Monterey versión 12.5, watchOS versión 8.7, iOS versión 15.6 y iPadOS versión 15.6. • https://support.apple.com/en-us/HT213340 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 0CVE-2022-32820 – Apple Security Advisory 2022-07-20-6
https://notcve.org/view.php?id=CVE-2022-32820
22 Jul 2022 — An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. An app may be able to execute arbitrary code with kernel privileges. Se abordó un problema de escritura fuera de límites con una comprobación de entrada mejorada. Este problema ha sido corregido en iOS versión 15.6 y iPadOS versión 15.6, macOS Big Sur versión 11.6.8, watchOS versión 8.... • https://support.apple.com/en-us/HT213340 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2022-32821 – Apple Security Advisory 2022-07-20-6
https://notcve.org/view.php?id=CVE-2022-32821
22 Jul 2022 — A memory corruption issue was addressed with improved validation. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. An app may be able to execute arbitrary code with kernel privileges. Se abordó un problema de corrupción de memoria con una comprobación mejorada. Este problema ha sido corregido en watchOS versión 8.7, tvOS versión 15.6, iOS versión 15.6 y iPadOS versión 15.6, macOS Monterey versión 12.5. • https://support.apple.com/en-us/HT213340 • CWE-787: Out-of-bounds Write •