CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2018-4302
https://notcve.org/view.php?id=CVE-2018-4302
A null pointer dereference was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13, iCloud for Windows 7.0, watchOS 4, iOS 11, iTunes 12.7 for Windows. Processing maliciously crafted XML may lead to an unexpected application termination or arbitrary code execution. Se abordó una desreferencia de puntero null con una comprobación mejorada. Este problema es corregido en macOS High Sierra versión 10.13, iCloud para Windows versión 7.0, watchOS versión 4, iOS versión 11, iTunes versión 12.7 para Windows. • https://support.apple.com/en-us/HT208112 https://support.apple.com/en-us/HT208115 https://support.apple.com/en-us/HT208141 https://support.apple.com/en-us/HT208142 https://support.apple.com/en-us/HT208144 • CWE-476: NULL Pointer Dereference •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2017-13880
https://notcve.org/view.php?id=CVE-2017-13880
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 11.2, watchOS 4.2. An application may be able to execute arbitrary code with kernel privilege. Se abordó un problema de corrupción de memoria con un manejo de la memoria mejorada. Este problema se ha corregido en iOS versión 11.2, watchOS versión 4.2. • https://support.apple.com/en-us/HT208325 https://support.apple.com/en-us/HT208334 •
CVSS: 8.1EPSS: 0%CPEs: 16EXPL: 0CVE-2017-13905
https://notcve.org/view.php?id=CVE-2017-13905
A race condition was addressed with additional validation. This issue is fixed in tvOS 11.2, iOS 11.2, macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan, watchOS 4.2. An application may be able to gain elevated privileges. Se abordó una condición de carrera con una comprobación adicional. Este problema es corregido en tvOS versión 11.2, iOS versión 11.2, macOS High Sierra versión 10.13.2, Security Update 2017-002 Sierra y Security Update 2017-005 El Capitan, watchOS versión 4.2. • https://support.apple.com/en-us/HT208325 https://support.apple.com/en-us/HT208327 https://support.apple.com/en-us/HT208331 https://support.apple.com/en-us/HT208334 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 5.5EPSS: 0%CPEs: 15EXPL: 0CVE-2021-30767
https://notcve.org/view.php?id=CVE-2021-30767
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.6.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. A local user may be able to modify protected parts of the file system. Se abordó un problema de lógica con la administración de estados mejorada. Este problema se ha corregido en macOS Big Sur versión 11.6.2, macOS Monterey versión 12.1, Security Update 2021-008 Catalina, iOS versión 15.2 y iPadOS versión 15.2, watchOS versión 8.3. • https://support.apple.com/en-us/HT212975 https://support.apple.com/en-us/HT212976 https://support.apple.com/en-us/HT212978 https://support.apple.com/en-us/HT212979 https://support.apple.com/en-us/HT212981 •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2021-1821
https://notcve.org/view.php?id=CVE-2021-1821
A logic issue was addressed with improved state management. This issue is fixed in watchOS 7.6, macOS Big Sur 11.5. Visiting a maliciously crafted webpage may lead to a system denial of service. Se abordó un problema de lógica con una administración de estado mejorada. Este problema se corrigió en watchOS versión 7.6 y macOS Big Sur versión 11.5. • https://support.apple.com/en-us/HT212602 https://support.apple.com/en-us/HT212605 •