CVSS: 6.3EPSS: 0%CPEs: 16EXPL: 0CVE-2022-26755 – Apple Security Advisory 2022-05-16-4
https://notcve.org/view.php?id=CVE-2022-26755
17 May 2022 — This issue was addressed with improved environment sanitization. This issue is fixed in Security Update 2022-004 Catalina, macOS Monterey 12.4, macOS Big Sur 11.6.6. A malicious application may be able to break out of its sandbox. Este problema es corregido con un saneo del entorno mejorado. Este problema es corregido en Security Update 2022-004 Catalina, macOS Monterey versión 12.4, macOS Big Sur versión 11.6.6. • https://support.apple.com/en-us/HT213255 •
CVSS: 9.3EPSS: 0%CPEs: 16EXPL: 0CVE-2022-26756 – Apple Security Advisory 2022-05-16-4
https://notcve.org/view.php?id=CVE-2022-26756
17 May 2022 — An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in Security Update 2022-004 Catalina, macOS Monterey 12.4, macOS Big Sur 11.6.6. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de escritura fuera de límites con una comprobación de entrada mejorada. Este problema es corregido en Security Update 2022-004 Catalina, macOS Monterey versión 12.4, macOS Big Sur versión 11.6.6. • https://support.apple.com/en-us/HT213255 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 4%CPEs: 20EXPL: 2CVE-2022-26757 – Apple Security Advisory 2022-05-16-4
https://notcve.org/view.php?id=CVE-2022-26757
17 May 2022 — A use after free issue was addressed with improved memory management. This issue is fixed in tvOS 15.5, iOS 15.5 and iPadOS 15.5, Security Update 2022-004 Catalina, watchOS 8.6, macOS Big Sur 11.6.6, macOS Monterey 12.4. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de uso de memoria previamente liberada con una administración de memoria mejorada. Este problema es corregido en tvOS versión 15.5, iOS versión 15.5 y iPadOS versión 15.5, Security Update 2022... • https://packetstorm.news/files/id/167517 • CWE-416: Use After Free •
CVSS: 9.3EPSS: 0%CPEs: 15EXPL: 0CVE-2022-26761 – Apple Security Advisory 2022-05-16-4
https://notcve.org/view.php?id=CVE-2022-26761
17 May 2022 — A memory corruption issue was addressed with improved memory handling. This issue is fixed in Security Update 2022-004 Catalina, macOS Big Sur 11.6.6. An application may be able to execute arbitrary code with kernel privileges. Se abordó un problema de corrupción de memoria con una administración de memoria mejorada. Este problema es corregido en Security Update 2022-004 Catalina, macOS Big Sur versión 11.6.6. • https://support.apple.com/en-us/HT213255 • CWE-787: Out-of-bounds Write •
CVSS: 9.3EPSS: 7%CPEs: 20EXPL: 2CVE-2022-26763 – Apple Security Advisory 2022-05-16-4
https://notcve.org/view.php?id=CVE-2022-26763
17 May 2022 — An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in tvOS 15.5, iOS 15.5 and iPadOS 15.5, Security Update 2022-004 Catalina, watchOS 8.6, macOS Big Sur 11.6.6, macOS Monterey 12.4. A malicious application may be able to execute arbitrary code with system privileges. Se abordó un problema de acceso fuera de límites con una comprobación de límites mejorada. Este problema es corregido en tvOS versión 15.5, iOS versión 15.5 y iPadOS versión 15.5, Security Update 2022... • https://packetstorm.news/files/id/168664 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 3%CPEs: 20EXPL: 2CVE-2022-26766 – Apple Security Advisory 2022-05-16-4
https://notcve.org/view.php?id=CVE-2022-26766
17 May 2022 — A certificate parsing issue was addressed with improved checks. This issue is fixed in tvOS 15.5, iOS 15.5 and iPadOS 15.5, Security Update 2022-004 Catalina, watchOS 8.6, macOS Big Sur 11.6.6, macOS Monterey 12.4. A malicious app may be able to bypass signature validation. Se abordó un problema de análisis de certificados con comprobaciones mejoradas. Este problema es corregido en tvOS versión 15.5, iOS versión 15.5 y iPadOS versión 15.5, Security Update 2022-004 Catalina, watchOS versión 8.6, macOS Big Su... • https://packetstorm.news/files/id/168664 • CWE-295: Improper Certificate Validation •
CVSS: 9.3EPSS: 0%CPEs: 16EXPL: 0CVE-2022-26721 – Apple Security Advisory 2022-05-16-4
https://notcve.org/view.php?id=CVE-2022-26721
17 May 2022 — A memory initialization issue was addressed. This issue is fixed in Security Update 2022-004 Catalina, macOS Monterey 12.4, macOS Big Sur 11.6.6. A malicious application may be able to gain root privileges. Se abordó un problema de inicialización de la memoria. Este problema es corregido en Security Update 2022-004 Catalina, macOS Monterey versión 12.4, macOS Big Sur versión 11.6.6. • https://support.apple.com/en-us/HT213255 • CWE-665: Improper Initialization •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2020-13495
https://notcve.org/view.php?id=CVE-2020-13495
18 Apr 2022 — An exploitable vulnerability exists in the way Pixar OpenUSD 20.05 handles file offsets in binary USD files. A specially crafted malformed file can trigger an arbitrary out-of-bounds memory access that could lead to the disclosure of sensitive information. This vulnerability could be used to bypass mitigations and aid additional exploitation. To trigger this vulnerability, the victim needs to access an attacker-provided file. Se presenta una vulnerabilidad explotable en la forma en que Pixar OpenUSD versión... • https://talosintelligence.com/vulnerability_reports/TALOS-2020-1104 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: 18EXPL: 0CVE-2022-22674 – Apple macOS Out-of-Bounds Read Vulnerability
https://notcve.org/view.php?id=CVE-2022-22674
01 Apr 2022 — An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in macOS Monterey 12.3.1, Security Update 2022-004 Catalina, macOS Big Sur 11.6.6. A local user may be able to read kernel memory. Se presentaba un problema de lectura fuera de límites que conllevaba a una divulgación de la memoria del kernel. • https://support.apple.com/en-us/HT213220 • CWE-125: Out-of-bounds Read •
CVSS: 8.2EPSS: 0%CPEs: 71EXPL: 4CVE-2018-25032 – zlib: A flaw found in zlib when compressing (not decompressing) certain inputs
https://notcve.org/view.php?id=CVE-2018-25032
25 Mar 2022 — zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches. zlib versiones anteriores a 1.2.12 permite la corrupción de memoria al desinflar (es decir, al comprimir) si la entrada tiene muchas coincidencias distantes An out-of-bounds access flaw was found in zlib, which allows memory corruption when deflating (ex: when compressing) if the input has many distant matches. For some rare inputs with a large number of distant matches (crafted payload... • https://github.com/Trinadh465/external_zlib_4.4_CVE-2018-25032 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •