CVSS: 5.5EPSS: 0%CPEs: 17EXPL: 0CVE-2022-32834 – Apple Security Advisory 2022-07-20-4
https://notcve.org/view.php?id=CVE-2022-32834
22 Jul 2022 — An access issue was addressed with improvements to the sandbox. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina. An app may be able to access sensitive user information. Se abordó un problema de acceso con el sandbox mejorado. Este problema es corregido en macOS Monterey versión 12.5, macOS Big Sur versión 11.6.8 y Security Update 2022-005 Catalina. • https://support.apple.com/en-us/HT213343 •
CVSS: 10.0EPSS: 2%CPEs: 31EXPL: 0CVE-2022-2294 – WebRTC Heap Buffer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2022-2294
22 Jul 2022 — Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de la pila en WebRTC en Google Chrome versiones anteriores a 103.0.5060.114, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malic... • http://www.openwall.com/lists/oss-security/2022/07/28/2 • CWE-787: Out-of-bounds Write •
CVSS: 4.3EPSS: 0%CPEs: 21EXPL: 0CVE-2022-32857 – Apple Security Advisory 2022-07-20-6
https://notcve.org/view.php?id=CVE-2022-32857
22 Jul 2022 — This issue was addressed by using HTTPS when sending information over the network. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina, iOS 15.6 and iPadOS 15.6, tvOS 15.6, watchOS 8.7. A user in a privileged network position can track a user’s activity. Se abordó este problema usando HTTPS cuando es enviada información a través de la red. Este problema es corregido en macOS Monterey versión 12.5, macOS Big Sur versión 11.6.8, Security Update 2022-005 Catalina... • https://support.apple.com/en-us/HT213340 •
CVSS: 5.5EPSS: 0%CPEs: 19EXPL: 0CVE-2022-32785 – Apple Security Advisory 2022-07-20-1
https://notcve.org/view.php?id=CVE-2022-32785
22 Jul 2022 — A null pointer dereference was addressed with improved validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. Processing an image may lead to a denial-of-service. Se abordó una desreferencia de puntero null con una comprobación mejorada. Este problema ha sido corregido en iOS versión 15.6 y iPadOS versión 15.6, Security Update 2022-005 Catalina, macOS Big Sur versión 11.6.8, macOS Monterey versión 12.5. • https://support.apple.com/en-us/HT213343 • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 17EXPL: 0CVE-2022-32786 – Apple Security Advisory 2022-07-20-4
https://notcve.org/view.php?id=CVE-2022-32786
22 Jul 2022 — An issue in the handling of environment variables was addressed with improved validation. This issue is fixed in Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. An app may be able to modify protected parts of the file system. Se abordó un problema en el manejo de variables de entorno con una comprobación mejorada. Este problema ha sido corregido en Security Update 2022-005 Catalina, macOS Big Sur versión 11.6.8 y macOS Monterey versión 12.5. • https://support.apple.com/en-us/HT213343 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 0%CPEs: 21EXPL: 0CVE-2022-32787 – Apple Security Advisory 2022-07-20-6
https://notcve.org/view.php?id=CVE-2022-32787
22 Jul 2022 — An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordó un problema de escritura fuera de límites con una comprobación mejorada de los límites. Este problema ha sido corregido en iOS versión 15.6 y iPadOS versión 15.6, macOS Big Sur versión 11.6.8, wat... • https://support.apple.com/en-us/HT213340 • CWE-787: Out-of-bounds Write •
CVSS: 7.1EPSS: 0%CPEs: 17EXPL: 0CVE-2022-32797 – Apple macOS AppleScript TASUnparser_PrintObject Untrusted Pointer Dereference Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2022-32797
22 Jul 2022 — This issue was addressed with improved checks. This issue is fixed in Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. Processing a maliciously crafted AppleScript binary may result in unexpected termination or disclosure of process memory. Se abordó este problema con unas comprobaciones mejoradas. Este problema ha sido corregido en Security Update 2022-005 Catalina, macOS Big Sur versión 11.6.8 y macOS Monterey versión 12.5. • https://support.apple.com/en-us/HT213343 • CWE-20: Improper Input Validation •
CVSS: 5.9EPSS: 0%CPEs: 16EXPL: 0CVE-2022-32799 – Apple Security Advisory 2022-07-20-4
https://notcve.org/view.php?id=CVE-2022-32799
22 Jul 2022 — An out-of-bounds read issue was addressed with improved bounds checking. This issue is fixed in Security Update 2022-005 Catalina, macOS Monterey 12.5. A user in a privileged network position may be able to leak sensitive information. Se abordó un problema de lectura fuera de límites con una comprobación de límites mejorada. Este problema ha sido corregido en Security Update 2022-005 Catalina, macOS Monterey versión 12.5. • https://support.apple.com/en-us/HT213343 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 17EXPL: 0CVE-2022-32805 – Apple Security Advisory 2022-07-20-4
https://notcve.org/view.php?id=CVE-2022-32805
22 Jul 2022 — The issue was addressed with improved handling of caches. This issue is fixed in Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. An app may be able to access sensitive user information. El problema ha sido corregido con un manejo de las cachés mejorado. Este problema ha sido corregido en Security Update 2022-005 Catalina, macOS Big Sur versión 11.6.8, macOS Monterey versión 12.5. • https://support.apple.com/en-us/HT213343 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 0CVE-2022-32815 – Apple Security Advisory 2022-07-20-6
https://notcve.org/view.php?id=CVE-2022-32815
22 Jul 2022 — The issue was addressed with improved memory handling. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. An app with root privileges may be able to execute arbitrary code with kernel privileges. Se abordó este problema con un manejo de memoria mejorado. Este problema ha sido corregido en iOS versión 15.6 y iPadOS versión 15.6, macOS Big Sur versión 11.6.8, watchOS versión 8.7, tvOS versión 15.6, macOS Monter... • https://support.apple.com/en-us/HT213340 • CWE-787: Out-of-bounds Write •