CVSS: 5.5EPSS: 0%CPEs: 21EXPL: 0CVE-2022-32849 – Apple Security Advisory 2022-07-20-1
https://notcve.org/view.php?id=CVE-2022-32849
22 Jul 2022 — An information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. An app may be able to access sensitive user information. Se abordó un problema de divulgación de información al eliminar el código vulnerable. Este problema ha sido corregido en iOS versión 15.6 y iPadOS versión 15.6, macOS Big Sur versión 11.6.8, tvOS versión 15.6, macOS Monterey versión 12.5,... • https://support.apple.com/en-us/HT213342 •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-32855 – Apple Security Advisory 2022-07-20-1
https://notcve.org/view.php?id=CVE-2022-32855
22 Jul 2022 — A logic issue was addressed with improved state management. This issue is fixed in iOS 15.6 and iPadOS 15.6. A user may be able to view restricted content from the lock screen. iOS 15.6 and iPadOS 15.6 addresses buffer overflow, bypass, code execution, information leakage, null pointer, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/HT213346 •
CVSS: 4.3EPSS: 0%CPEs: 21EXPL: 0CVE-2022-32857 – Apple Security Advisory 2022-07-20-6
https://notcve.org/view.php?id=CVE-2022-32857
22 Jul 2022 — This issue was addressed by using HTTPS when sending information over the network. This issue is fixed in macOS Monterey 12.5, macOS Big Sur 11.6.8, Security Update 2022-005 Catalina, iOS 15.6 and iPadOS 15.6, tvOS 15.6, watchOS 8.7. A user in a privileged network position can track a user’s activity. Se abordó este problema usando HTTPS cuando es enviada información a través de la red. Este problema es corregido en macOS Monterey versión 12.5, macOS Big Sur versión 11.6.8, Security Update 2022-005 Catalina... • https://support.apple.com/en-us/HT213340 •
CVSS: 8.8EPSS: 15%CPEs: 31EXPL: 0CVE-2022-2294 – WebRTC Heap Buffer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2022-2294
22 Jul 2022 — Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Un desbordamiento del búfer de la pila en WebRTC en Google Chrome versiones anteriores a 103.0.5060.114, permitía a un atacante remoto explotar potencialmente la corrupción de la pila por medio de una página HTML diseñada Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malic... • http://www.openwall.com/lists/oss-security/2022/07/28/2 • CWE-787: Out-of-bounds Write •
CVSS: 4.4EPSS: 0%CPEs: 19EXPL: 0CVE-2022-32781 – Apple Security Advisory 2022-07-20-4
https://notcve.org/view.php?id=CVE-2022-32781
22 Jul 2022 — This issue was addressed by enabling hardened runtime. This issue is fixed in macOS Monterey 12.4, iOS 15.5 and iPadOS 15.5, Security Update 2022-005 Catalina, macOS Big Sur 11.6.8. An app with root privileges may be able to access private information. Se abordó este problema al habilitar el tiempo de ejecución reforzado. Este problema ha sido corregido en macOS Monterey versión 12.4, iOS versión 15.5 y iPadOS versión 15.5, Security Update 2022-005 Catalina, macOS Big Sur versión 11.6.8. • https://support.apple.com/en-us/HT213257 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2022-32784 – Gentoo Linux Security Advisory 202208-39
https://notcve.org/view.php?id=CVE-2022-32784
22 Jul 2022 — The issue was addressed with improved UI handling. This issue is fixed in Safari 15.6, iOS 15.6 and iPadOS 15.6. Visiting a maliciously crafted website may leak sensitive data. iOS 15.6 and iPadOS 15.6 addresses buffer overflow, bypass, code execution, information leakage, null pointer, out of bounds read, out of bounds write, and spoofing vulnerabilities. • https://support.apple.com/en-us/HT213341 •
CVSS: 5.5EPSS: 0%CPEs: 19EXPL: 0CVE-2022-32785 – Apple Security Advisory 2022-07-20-1
https://notcve.org/view.php?id=CVE-2022-32785
22 Jul 2022 — A null pointer dereference was addressed with improved validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, Security Update 2022-005 Catalina, macOS Big Sur 11.6.8, macOS Monterey 12.5. Processing an image may lead to a denial-of-service. Se abordó una desreferencia de puntero null con una comprobación mejorada. Este problema ha sido corregido en iOS versión 15.6 y iPadOS versión 15.6, Security Update 2022-005 Catalina, macOS Big Sur versión 11.6.8, macOS Monterey versión 12.5. • https://support.apple.com/en-us/HT213343 • CWE-476: NULL Pointer Dereference •
CVSS: 10.0EPSS: 0%CPEs: 21EXPL: 0CVE-2022-32787 – Apple Security Advisory 2022-07-20-6
https://notcve.org/view.php?id=CVE-2022-32787
22 Jul 2022 — An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordó un problema de escritura fuera de límites con una comprobación mejorada de los límites. Este problema ha sido corregido en iOS versión 15.6 y iPadOS versión 15.6, macOS Big Sur versión 11.6.8, wat... • https://support.apple.com/en-us/HT213340 • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 5EXPL: 1CVE-2022-32788 – AppleAVD AVC_RBSP::parseSliceHeader ref_pic_list_modification Overflow
https://notcve.org/view.php?id=CVE-2022-32788
22 Jul 2022 — A buffer overflow was addressed with improved bounds checking. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. A remote user may be able to cause kernel code execution. Se abordó un desbordamiento del búfer con una comprobación de límites mejorada. Este problema es corregido en watchOS versión 8.7, tvOS versión 15.6, iOS versión 15.6 y iPadOS versión 15.6, macOS Monterey versión 12.5. • https://packetstorm.news/files/id/168122 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 10.0EPSS: 0%CPEs: 5EXPL: 0CVE-2022-32792 – webkitgtk: Processing maliciously crafted web content may lead to arbitrary code execution
https://notcve.org/view.php?id=CVE-2022-32792
22 Jul 2022 — An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordó un problema de escritura fuera de límites con una comprobación de entradas mejorada. Este problema ha sido corregido en iOS versión 15.6 y iPadOS versión 15.6, watchOS versión 8.7, tvOS versión 15.6, macOS Monterey versión 12.5, Safari ver... • https://support.apple.com/en-us/HT213340 • CWE-787: Out-of-bounds Write •