37 matches found
CVE-2024-54855
fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts...
CVE-2024-54855
fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts...
CVE-2024-54855
fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts...
CVE-2024-54855
fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts...
Vanilla OS 2 Core image 安全漏洞
Vanilla OS 2 Core image is an open source base system image for Vanilla OS. A security vulnerability exists in Vanilla OS 2 Core image version v1.1.0, which stems from the use of static keys by the SSH service and could lead to a man-in-the-middle attack...
CVE-2024-54855
The CVE affects Vanilla OS 2 Core image v1.1.0, where SSH service uses static keys baked into the image. This root cause enables potential man‑in‑the‑middle attacks on SSH connections to other hosts. Documented across NVD/Red Hat/CNNVD/CVE listings; no explicit remediation or patch version is pro...
EUVD-2024-55374
fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts...
CVE-2024-54855
fabricators Ltd Vanilla OS 2 Core image v1.1.0 was discovered to contain static keys for the SSH service, allowing attackers to possibly execute a man-in-the-middle attack during connections with other hosts...
PT-2026-2433
Name of the Vulnerable Software and Affected Versions fabricators Ltd Vanilla OS 2 Core image version 1.1.0 Description The software contains static keys for the SSH service. This may allow attackers to execute a man-in-the-middle attack during connections with other hosts. Recommendations At the...
EUVD-2016-5666
Malware in sbrugna...
The vulnerability of the Core Image component in operating systems such as macOS, iOS, and iPadOS allows a malicious individual to gain unauthorized access to edited photographs stored in a temporal catalog.
The vulnerability of the Core Image component in macOS, iOS, and iPadOS stems from the lack of protection for service data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to edited photos stored in the temporary catalog...
PT-2023-8423 · Apple · Ipados +3
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 14 iOS versions prior to 16.7 iPadOS versions prior to 16.7 Description: The issue is related to the handling of temporary files, which may allow an app to access edited photos saved to a temporary directory. This coul...
About the security content of iOS 16.7 and iPadOS 16.7
About the security content of iOS 16.7 and iPadOS 16.7 This document describes the security content of iOS 16.7 and iPadOS 16.7. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches ...
Mac OS X 10.10.5 / 10.11.6 Multiple Vulnerabilities (Security Update 2016-002 / 2016-006)
The remote host is running a version of Mac OS X that is 10.10.5 but is missing Security Update 2016-006, or else it is version 10.11.6 but is missing Security Update 2016-002. It is, therefore, affected by multiple vulnerabilities : - A memory corruption issue exists in the AppleGraphicsControl...
About the security content of macOS Sierra 10.12.1, Security Update 2016-002 El Capitan, and Security Update 2016-006 Yosemite - Apple Support
About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. For more information about security, se...
The vulnerability of the Mac OS X operating system allows a hacker to trigger a service failure or execute arbitrary code.
The vulnerability of the Core Image component in the Mac OS X operating system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely, or cause a service failure memory corruption,...
CVE-2016-4681
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "Core Image" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted JPEG file...
Memory corruption
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "Core Image" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted JPEG file...
CVE-2016-4681
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "Core Image" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted JPEG file...
CVE-2016-4681
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "Core Image" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application crash via a crafted JPEG file...