Page 51 of 2935 results (0.019 seconds)

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1

CVE-2019-8561 – Apple Security Advisory 2019-3-25-2

https://notcve.org/view.php?id=CVE-2019-8561

26 Mar 2019 — A logic issue was addressed with improved validation. This issue is fixed in macOS Mojave 10.14.4. A malicious application may be able to elevate privileges. Un problema lógico fue abordado con una comprobación mejorada. Este problema es corregido en macOS Mojave versión 10.14.4. • https://github.com/0xmachos/CVE-2019-8561 • CWE-20: Improper Input Validation •

CVSS: 7.6EPSS: 0%CPEs: 2EXPL: 2

CVE-2019-8565 – Apple Mac OS X - Feedback Assistant Race Condition

https://notcve.org/view.php?id=CVE-2019-8565

26 Mar 2019 — A race condition was addressed with additional validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4. A malicious application may be able to gain root privileges. Una condición de carrera se abordó con comprobación adicional. Este problema es corregido en iOS versión 12.2, macOS Mojave versión 10.14.4. • https://packetstorm.news/files/id/152996 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •

CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 0

CVE-2019-8502 – Apple Security Advisory 2019-3-25-2

https://notcve.org/view.php?id=CVE-2019-8502

26 Mar 2019 — An API issue existed in the handling of dictation requests. This issue was addressed with improved validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to initiate a Dictation request without user authorization. Se presentó un problema de API en el manejo de las peticiones de dictado. • https://support.apple.com/HT209599 • CWE-20: Improper Input Validation •

CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 3

CVE-2019-6207 – Apple Security Advisory 2019-3-25-2

https://notcve.org/view.php?id=CVE-2019-6207

26 Mar 2019 — An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout. Se presentó un problema de lectura fuera de límites que condujo a la divulgación de la memoria del kernel. • https://github.com/maldiohead/CVE-2019-6207 • CWE-125: Out-of-bounds Read •

CVSS: 8.8EPSS: 1%CPEs: 7EXPL: 0

CVE-2019-6237 – Apple Safari createRenderers Use-After-Free Remote Code Execution Vulnerability

https://notcve.org/view.php?id=CVE-2019-6237

26 Mar 2019 — Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, Safari 12.1.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. Processing maliciously crafted web content may lead to arbitrary code execution. Se abordaron múltiples problemas de corrupción de memoria mejorando el manejo de la memoria. Este problema es corregido en iOS versión 12.3, macOS Mojave versión 10.14.5, tvOS versión 12.3, Safari versión 12.1.1, iTune... • https://support.apple.com/HT210118 • CWE-787: Out-of-bounds Write •

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2019-6239 – Apple Security Advisory 2019-3-25-2

https://notcve.org/view.php?id=CVE-2019-6239

26 Mar 2019 — This issue was addressed with improved handling of file metadata. This issue is fixed in macOS Mojave 10.14.4. A malicious application may bypass Gatekeeper checks. Este problema fue abordado mejorando el manejo de los metadatos de los archivos. Este problema es corregido en macOS Mojave versión 10.14.4. • https://support.apple.com/HT209446 •

CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0

CVE-2019-7293 – Apple Security Advisory 2019-3-25-2

https://notcve.org/view.php?id=CVE-2019-7293

26 Mar 2019 — A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A local user may be able to read kernel memory. Un problema de corrupción de memoria fue abordado mejorando el manejo de la memoria. Este problema es corregido en iOS versión 12.2, macOS Mojave versión 10.14.4, tvOS versión 12.2, watchOS versión 5.2. • https://support.apple.com/HT209599 • CWE-787: Out-of-bounds Write •

CVSS: 4.4EPSS: 0%CPEs: 10EXPL: 1

CVE-2019-8906 – Slackware Security Advisory - file Updates

https://notcve.org/view.php?id=CVE-2019-8906

18 Feb 2019 — do_core_note in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused. do_core_note en readelf.c en libmagic.a en la versión 5.35 de file tiene una lectura fuera de límites debido a una mala utilización de memcpy. New file packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. • http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00027.html • CWE-125: Out-of-bounds Read •

CVSS: 7.5EPSS: 1%CPEs: 2EXPL: 0

CVE-2019-6223 – Apple iOS and macOS Group Facetime Vulnerability

https://notcve.org/view.php?id=CVE-2019-6223

07 Feb 2019 — A logic issue existed in the handling of Group FaceTime calls. The issue was addressed with improved state management. This issue is fixed in iOS 12.1.4, macOS Mojave 10.14.3 Supplemental Update. The initiator of a Group FaceTime call may be able to cause the recipient to answer. Existía un problema de lógica en el manejo de llamadas FaceTime grupales. • https://support.apple.com/HT209520 •

CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 2

CVE-2019-7286 – Apple Multiple Products Memory Corruption Vulnerability

https://notcve.org/view.php?id=CVE-2019-7286

07 Feb 2019 — A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.1.4, macOS Mojave 10.14.3 Supplemental Update. An application may be able to gain elevated privileges. Un problema de corrupción de memoria fue abordado mejorando la comprobación de entrada. Este problema fue abordado en iOS versión 12.1.4, Actualización Complementaria macOS Mojave versión 10.14.3. • https://packetstorm.news/files/id/152735 • CWE-787: Out-of-bounds Write •