35 matches found
CVE-2024-54855
fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts...
CVE-2024-54855
fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts...
CVE-2024-54855
fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts...
CVE-2024-54855
fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts...
CVE-2024-54855
The CVE affects Vanilla OS 2 Core image v1.1.0, where SSH service uses static keys baked into the image. This root cause enables potential man‑in‑the‑middle attacks on SSH connections to other hosts. Documented across NVD/Red Hat/CNNVD/CVE listings; no explicit remediation or patch version is pro...
PT-2026-2433
Name of the Vulnerable Software and Affected Versions fabricators Ltd Vanilla OS 2 Core image version 1.1.0 Description The software contains static keys for the SSH service. This may allow attackers to execute a man-in-the-middle attack during connections with other hosts. Recommendations At the...
CVE-2024-54855
fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts...
EUVD-2024-55374
fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts...
Vanilla OS 2 Core image 安全漏洞
Vanilla OS 2 Core image is an open source base system image for Vanilla OS. A security vulnerability exists in Vanilla OS 2 Core image version v1.1.0, which stems from the use of static keys by the SSH service and could lead to a man-in-the-middle attack...
EUVD-2016-5666
Malware in sbrugna...
PT-2023-8423 · Apple · Ipados +3
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 14 iOS versions prior to 16.7 iPadOS versions prior to 16.7 Description: The issue is related to the handling of temporary files, which may allow an app to access edited photos saved to a temporary directory. This coul...
About the security content of iOS 16.7 and iPadOS 16.7
About the security content of iOS 16.7 and iPadOS 16.7 This document describes the security content of iOS 16.7 and iPadOS 16.7. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches ...
Mac OS X 10.10.5 / 10.11.6 Multiple Vulnerabilities (Security Update 2016-002 / 2016-006)
The remote host is running a version of Mac OS X that is 10.10.5 but is missing Security Update 2016-006, or else it is version 10.11.6 but is missing Security Update 2016-002. It is, therefore, affected by multiple vulnerabilities : - A memory corruption issue exists in the AppleGraphicsControl...
About the security content of macOS Sierra 10.12.1, Security Update 2016-002 El Capitan, and Security Update 2016-006 Yosemite - Apple Support
About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. For more information about security, se...
CVE-2016-4681
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "Core Image" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted JPEG file...
CVE-2016-4681
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "Core Image" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted JPEG file...
Memory corruption
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "Core Image" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted JPEG file...
CVE-2016-4681
CVE-2016-4681 affects macOS prior to 10.12.1, specifically the Core Image component. A memory corruption flaw occurs when processing crafted JPEG files, allowing an unauthenticated remote attacker to execute arbitrary code or cause an application crash via a malicious image. The issue is disclose...
CVE-2016-4681
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "Core Image" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted JPEG file...
Apple macOS Sierra Core Image Memory Corruption Vulnerability
Apple macOS Sierra is a specialized operating system developed by Apple for Mac computers, and Core Image is one of the graphical considerations framework. A memory corruption vulnerability exists in Core Image in Apple macOS Sierra versions prior to 10.12.1. A remote attacker can exploit this...