CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2024-27817 – Apple Security Advisory 06-10-2024-1
https://notcve.org/view.php?id=CVE-2024-27817
10 Jun 2024 — Una aplicación puede ejecutar código arbitrario con privilegios del kernel. visionOS 1.2 addresses bypass, code execution, integer overflow, out of bounds access, out of bounds read, and out of bounds write vulnerabilities. • http://seclists.org/fulldisclosure/2024/Jun/5 • CWE-353: Missing Support for Integrity Check •
CVSS: 8.4EPSS: 0%CPEs: 6EXPL: 0CVE-2024-27801 – Apple Security Advisory 06-10-2024-1
https://notcve.org/view.php?id=CVE-2024-27801
10 Jun 2024 — Es posible que una aplicación pueda elevar los privilegios. visionOS 1.2 addresses bypass, code execution, integer overflow, out of bounds access, out of bounds read, and out of bounds write vulnerabilities. • http://seclists.org/fulldisclosure/2024/Jun/5 •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2024-27802 – Apple macOS Metal Framework KTX Image Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-27802
10 Jun 2024 — An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. visionOS 1.2 addresses bypass, code execution, integer overflow, out of bounds access, out of bounds read, and out of bounds write vulnerabilities. • http://seclists.org/fulldisclosure/2024/Jun/5 • CWE-125: Out-of-bounds Read CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2024-27838 – webkitgtk: A maliciously crafted webpage may be able to fingerprint the user
https://notcve.org/view.php?id=CVE-2024-27838
10 Jun 2024 — This vulnerability allows a maliciously crafted webpage to fingerprint the user. visionOS 1.2 addresses bypass, code execution, integer overflow, out of bounds access, out of bounds read, and out of bounds write vulnerabilities. • http://seclists.org/fulldisclosure/2024/Jun/5 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 0%CPEs: 7EXPL: 0CVE-2024-27808 – webkitgtk: Processing web content may lead to arbitrary code execution
https://notcve.org/view.php?id=CVE-2024-27808
10 Jun 2024 — This flaw is caused by insufficient memory handling, which attackers could exploit to execute malicious code on affected systems. visionOS 1.2 addresses bypass, code execution, integer overflow, out of bounds access, out of bounds read, and out of bounds write vulnerabilities. • http://seclists.org/fulldisclosure/2024/Jun/5 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-786: Access of Memory Location Before Start of Buffer •
CVSS: 9.1EPSS: 0%CPEs: 6EXPL: 0CVE-2024-27832 – Apple Security Advisory 06-10-2024-1
https://notcve.org/view.php?id=CVE-2024-27832
10 Jun 2024 — Es posible que una aplicación pueda elevar los privilegios. visionOS 1.2 addresses bypass, code execution, integer overflow, out of bounds access, out of bounds read, and out of bounds write vulnerabilities. • http://seclists.org/fulldisclosure/2024/Jun/5 • CWE-703: Improper Check or Handling of Exceptional Conditions •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-27812 – Apple Security Advisory 06-10-2024-1
https://notcve.org/view.php?id=CVE-2024-27812
10 Jun 2024 — El procesamiento de contenido web puede dar lugar a una denegación de servicio. visionOS 1.2 addresses bypass, code execution, integer overflow, out of bounds access, out of bounds read, and out of bounds write vulnerabilities. • http://seclists.org/fulldisclosure/2024/Jun/5 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2024-27828 – Apple Security Advisory 06-10-2024-1
https://notcve.org/view.php?id=CVE-2024-27828
10 Jun 2024 — Una aplicación puede ejecutar código arbitrario con privilegios del kernel. visionOS 1.2 addresses bypass, code execution, integer overflow, out of bounds access, out of bounds read, and out of bounds write vulnerabilities. • http://seclists.org/fulldisclosure/2024/Jun/5 • CWE-786: Access of Memory Location Before Start of Buffer CWE-788: Access of Memory Location After End of Buffer •
CVSS: 9.1EPSS: 0%CPEs: 3EXPL: 0CVE-2024-27844 – Apple Security Advisory 06-10-2024-1
https://notcve.org/view.php?id=CVE-2024-27844
10 Jun 2024 — El cuadro de diálogo de permiso de un sitio web puede persistir después de navegar fuera del sitio. visionOS 1.2 addresses bypass, code execution, integer overflow, out of bounds access, out of bounds read, and out of bounds write vulnerabilities. • http://seclists.org/fulldisclosure/2024/Jun/5 •
CVSS: 10.0EPSS: 0%CPEs: 7EXPL: 0CVE-2024-27833 – Apple Safari B3 JIT Compiler Integer Underflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-27833
10 Jun 2024 — An integer overflow was addressed with improved input validation. ... The issue results from the lack of proper validation of user-supplied data, which can result in an integer underflow that causes an incorrect optimization. An attacker can leverage this vulnerability to execute code in the context of the current process. visionOS 1.2 addresses bypass, code execution, integer overflow, out of bounds access, out of bounds read, and out of bounds write vulnerabilitie... • http://seclists.org/fulldisclosure/2024/Jun/5 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-190: Integer Overflow or Wraparound •