CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-22673 – Apple Security Advisory 2022-05-16-1
https://notcve.org/view.php?id=CVE-2022-22673
17 May 2022 — This issue was addressed with improved checks. This issue is fixed in iOS 15.5 and iPadOS 15.5. Processing a large input may lead to a denial of service. Este problema ha sido abordado con comprobaciones mejoradas. Este problema es corregido en iOS versión 15.5 y iPadOS versión 15.5. • https://support.apple.com/en-us/HT213258 •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 0CVE-2022-22677 – Ubuntu Security Notice USN-5522-1
https://notcve.org/view.php?id=CVE-2022-22677
17 May 2022 — A logic issue in the handling of concurrent media was addressed with improved state handling. This issue is fixed in macOS Monterey 12.4, iOS 15.5 and iPadOS 15.5. Video self-preview in a webRTC call may be interrupted if the user answers a phone call. Se abordó un problema lógico en el manejo de medios concurrentes mejorando el manejo del estado. Este problema se solucionó en macOS Monterey 12.4, iOS 15.5 y iPadOS 15.5. • https://support.apple.com/en-us/HT213257 •
CVSS: 5.5EPSS: 1%CPEs: 6EXPL: 0CVE-2022-26706 – Apple Security Advisory 2022-05-16-1
https://notcve.org/view.php?id=CVE-2022-26706
17 May 2022 — An access issue was addressed with additional sandbox restrictions on third-party applications. This issue is fixed in tvOS 15.5, iOS 15.5 and iPadOS 15.5, watchOS 8.6, macOS Big Sur 11.6.6, macOS Monterey 12.4. A sandboxed process may be able to circumvent sandbox restrictions. Se abordó un problema de acceso con restricciones adicionales de sandbox en aplicaciones de terceros. Este problema es corregido en tvOS versión 15.5, iOS versión 15.5 y iPadOS versión 15.5, watchOS versión 8.6, macOS Big Sur versió... • https://support.apple.com/en-us/HT213253 •
CVSS: 9.3EPSS: 0%CPEs: 6EXPL: 0CVE-2022-26768 – Apple Security Advisory 2022-05-16-1
https://notcve.org/view.php?id=CVE-2022-26768
17 May 2022 — A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.4, watchOS 8.6, tvOS 15.5, macOS Big Sur 11.6.6. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de corrupción de memoria con una administración de estados mejorada. Este problema es corregido en macOS Monterey versión 12.4, watchOS versión 8.6, tvOS versión 15.5, macOS Big Sur versión 11.6.6. • http://seclists.org/fulldisclosure/2022/Jul/12 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 9EXPL: 1CVE-2022-1622 – Debian Security Advisory 5333-1
https://notcve.org/view.php?id=CVE-2022-1622
11 May 2022 — LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:619, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit b4e79bfa. La rama maestra de LibTIFF presenta una lectura fuera de límites en LZWDecode en libtiff/tif_lzw.c:619, permitiendo a atacantes causar una denegación de servicio por medio de un archivo tiff diseñado. Para usuarios que compilan libtiff a partir de las fuentes, la ... • http://seclists.org/fulldisclosure/2022/Oct/28 • CWE-125: Out-of-bounds Read •
CVSS: 9.3EPSS: 0%CPEs: 6EXPL: 0CVE-2022-22675 – Apple macOS Out-of-Bounds Write Vulnerability
https://notcve.org/view.php?id=CVE-2022-22675
01 Apr 2022 — An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in tvOS 15.5, watchOS 8.6, macOS Big Sur 11.6.6, macOS Monterey 12.3.1, iOS 15.4.1 and iPadOS 15.4.1. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited.. Se abordó un problema de escritura fuera de límites con una comprobación de límites mejorada. • https://support.apple.com/en-us/HT213219 • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-22659
https://notcve.org/view.php?id=CVE-2022-22659
18 Mar 2022 — A logic issue was addressed with improved state management. This issue is fixed in iOS 15.4 and iPadOS 15.4. An attacker in a privileged network position may be able to leak sensitive user information. Se abordó un problema de lógica con una administración de estados mejorada. Este problema es corregido en iOS versión 15.4 y iPadOS versión 15.4. • https://support.apple.com/en-us/HT213182 •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2022-22667
https://notcve.org/view.php?id=CVE-2022-22667
18 Mar 2022 — A use after free issue was addressed with improved memory management. This issue is fixed in iOS 15.4 and iPadOS 15.4. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de uso de memoria previamente liberada con una administración de memoria mejorada. Este problema es corregido en iOS versión 15.4 y iPadOS versión 15.4. • https://support.apple.com/en-us/HT213182 • CWE-416: Use After Free •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0CVE-2022-22671
https://notcve.org/view.php?id=CVE-2022-22671
18 Mar 2022 — An authentication issue was addressed with improved state management. This issue is fixed in iOS 15.4 and iPadOS 15.4. A person with physical access to an iOS device may be able to access photos from the lock screen. Se abordó un problema de autenticación con una administración de estados mejorada. Este problema es corregido en iOS versión 15.4 y iPadOS versión 15.4. • https://support.apple.com/en-us/HT213182 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-22653
https://notcve.org/view.php?id=CVE-2022-22653
18 Mar 2022 — A logic issue was addressed with improved restrictions. This issue is fixed in iOS 15.4 and iPadOS 15.4. A malicious website may be able to access information about the user and their devices. Se abordó un problema de lógica con restricciones mejoradas. Este problema es corregido en iOS versión 15.4 y iPadOS versión 15.4. • https://support.apple.com/en-us/HT213182 •