CVSS: 7.1EPSS: 0%CPEs: 17EXPL: 0CVE-2022-32807 – Apple Security Advisory 2022-07-20-4
https://notcve.org/view.php?id=CVE-2022-32807
22 Jul 2022 — This issue was addressed with improved file handling. This issue is fixed in Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. An app may be able to overwrite arbitrary files. Se abordó este problema con un manejo de archivos mejorado. Este problema ha sido corregido en Security Update 2022-005 Catalina, macOS Big Sur versión 11.6.8, macOS Monterey versión 12.5. • https://support.apple.com/en-us/HT213343 •
CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 0CVE-2022-32813 – Apple Security Advisory 2022-07-20-6
https://notcve.org/view.php?id=CVE-2022-32813
22 Jul 2022 — The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina, iOS 15.6 and iPadOS 15.6, tvOS 15.6, watchOS 8.7. An app with root privileges may be able to execute arbitrary code with kernel privileges. Se abordó este problema con una administración de memoria mejorada. Este problema es corregido en macOS Monterey versión 12.5, macOS Big Sur versión 11.6.8, Security Update 2022-005 Catalina, iOS versión 15.6 y iPadO... • https://support.apple.com/en-us/HT213340 •
CVSS: 5.5EPSS: 0%CPEs: 21EXPL: 0CVE-2022-32823 – Apple Security Advisory 2022-07-20-6
https://notcve.org/view.php?id=CVE-2022-32823
22 Jul 2022 — A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. An app may be able to leak sensitive user information. Se abordó un problema de inicialización de memoria con un manejo de memoria mejorado. Este problema ha sido corregido en iOS versión 15.6 y iPadOS versión 15.6, macOS Big Sur versión 11.6.8, watchOS versión 8.7, tvOS versión 15.6, ... • https://support.apple.com/en-us/HT213340 • CWE-665: Improper Initialization •
CVSS: 5.5EPSS: 0%CPEs: 17EXPL: 0CVE-2022-32800 – Apple Security Advisory 2022-07-20-4
https://notcve.org/view.php?id=CVE-2022-32800
22 Jul 2022 — This issue was addressed with improved checks. This issue is fixed in Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. An app may be able to modify protected parts of the file system. Se abordó este problema con comprobaciones mejoradas. Este problema ha sido corregido en Security Update 2022-005 Catalina, macOS Big Sur versión 11.6.8 y macOS Monterey versión 12.5. • https://support.apple.com/en-us/HT213343 •
CVSS: 9.4EPSS: 0%CPEs: 21EXPL: 0CVE-2022-32847 – Apple Security Advisory 2022-07-20-6
https://notcve.org/view.php?id=CVE-2022-32847
22 Jul 2022 — This issue was addressed with improved checks. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. A remote user may be able to cause unexpected system termination or corrupt kernel memory. Se abordó este problema con comprobaciones mejoradas. Este problema ha sido corregido en iOS versión 15.6 y iPadOS versión 15.6, macOS Big Sur versión 11.6.8, watchOS versión 8.7, tvOS versión 15.6, macOS Monterey versión 1... • https://support.apple.com/en-us/HT213340 •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-32848 – Apple Security Advisory 2022-07-20-2
https://notcve.org/view.php?id=CVE-2022-32848
22 Jul 2022 — A logic issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6.8, macOS Monterey 12.5. An app may be able to capture a user’s screen. Se abordó un problema de lógica con comprobaciones mejoradas. Este problema ha sido corregido en macOS Big Sur versión 11.6.8, macOS Monterey versión 12.5. • https://support.apple.com/en-us/HT213344 •
CVSS: 7.1EPSS: 0%CPEs: 17EXPL: 0CVE-2022-32853 – Apple Security Advisory 2022-07-20-4
https://notcve.org/view.php?id=CVE-2022-32853
22 Jul 2022 — An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. Processing a maliciously crafted AppleScript binary may result in unexpected termination or disclosure of process memory. Se abordó un problema de lectura fuera de límites con una comprobación de entrada mejorada. Este problema ha sido corregido en Security Update 2022-005 Catalina, macOS Big Sur versión 11.6.8, macOS Monterey versión ... • https://support.apple.com/en-us/HT213343 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 19EXPL: 0CVE-2022-32838 – Apple Security Advisory 2022-07-20-1
https://notcve.org/view.php?id=CVE-2022-32838
22 Jul 2022 — A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina, iOS 15.6 and iPadOS 15.6. An app may be able to read arbitrary files. Se abordó un problema de lógica con un administración de estados mejorada. Este problema es corregido en macOS Monterey versión 12.5, macOS Big Sur versión 11.6.8, Security Update 2022-005 Catalina, iOS versión 15.6 y iPadOS versión 15.6. • https://support.apple.com/en-us/HT213343 •
CVSS: 7.8EPSS: 0%CPEs: 16EXPL: 0CVE-2022-32842 – Apple Security Advisory 2022-07-20-4
https://notcve.org/view.php?id=CVE-2022-32842
22 Jul 2022 — An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in Security Update 2022-005 Catalina, macOS Monterey 12.5. An app may be able to gain elevated privileges. Se abordó un problema de lectura fuera de límites con una comprobación de entrada mejorada. Este problema ha sido corregido en Security Update 2022-005 Catalina, macOS Monterey versión 12.5. • https://support.apple.com/en-us/HT213343 • CWE-125: Out-of-bounds Read •
CVSS: 10.0EPSS: 16%CPEs: 31EXPL: 0CVE-2022-2294 – WebRTC Heap Buffer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2022-2294
22 Jul 2022 — Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de la pila en WebRTC en Google Chrome versiones anteriores a 103.0.5060.114, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malic... • http://www.openwall.com/lists/oss-security/2022/07/28/2 • CWE-787: Out-of-bounds Write •