Lucene search
+L

572 matches found

Vulnrichment
Vulnrichment
added 2023/05/08 12:0 a.m.8 views

CVE-2023-23542

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to access user-sensitive data...

4.6AI score0.00251EPSS
Exploits0References3
CVE
CVE
added 2023/05/08 12:0 a.m.113 views

CVE-2023-23537

CVE-2023-23537 affects Apple platforms via a privacy issue where log entries could reveal sensitive location data. The vulnerability is fixed by Apple in: macOS Ventura 13.3, iOS 16.4/iPadOS 16.4, iOS 15.7.4/iPadOS 15.7.4, watchOS 9.4, and macOS Big Sur 11.7.5. Root cause (as described) is improv...

5.5CVSS4.2AI score0.00248EPSS
Exploits0References5Affected Software4
CVE
CVE
added 2023/05/08 12:0 a.m.81 views

CVE-2023-27928

The CVE-2023-27928 vulnerability concerns a privacy issue where private data redaction for log entries was insufficient, potentially allowing an app to access information about a user’s contacts. Affected products and versions include: macOS Big Sur 11.7.5; macOS Ventura 13.3; iOS 15.7.4 and iOS ...

3.3CVSS2.6AI score0.00243EPSS
Exploits0References6Affected Software5
Positive Technologies
Positive Technologies
added 2023/03/27 12:0 a.m.2 views

PT-2023-19019 · Apple · Ios +3

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 macOS Big Sur versions prior to 11.7.5 iOS versions prior to 16.4 iOS versions prior to 15.7.4 iPadOS versions prior to 16.4 iPadOS versions prior to 15.7.4 watchOS versions prior to 9.4 Description: A privacy iss...

5.5CVSS5.4AI score0.00248EPSS
Exploits0References12
Apple
Apple
added 2023/03/27 12:0 a.m.160 views

About the security content of iOS 16.4 and iPadOS 16.4

About the security content of iOS 16.4 and iPadOS 16.4 This document describes the security content of iOS 16.4 and iPadOS 16.4. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches ...

9.8CVSS10AI score0.22951EPSS
Exploits2References1Affected Software2
Positive Technologies
Positive Technologies
added 2023/03/27 12:0 a.m.1 views

PT-2023-19025 · Apple · Macos Ventura +3

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 macOS Monterey versions prior to 12.6.4 macOS Big Sur versions prior to 11.7.5 Description: A privacy issue was addressed with improved private data redaction for log entries, which may allow an app to access...

5.5CVSS5.6AI score0.00251EPSS
Exploits0References8
Apple
Apple
added 2023/03/27 12:0 a.m.117 views

About the security content of macOS Ventura 13.3

About the security content of macOS Ventura 13.3 This document describes the security content of macOS Ventura 13.3. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases...

9.8CVSS9.9AI score0.22951EPSS
Exploits10References1Affected Software1
OSV
OSV
added 2023/02/27 8:15 p.m.4 views

CVE-2023-23505

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Monterey 12.6.3, macOS Ventura 13.2, watchOS 9.3, macOS Big Sur 11.7.3, iOS 15.7.3 and iPadOS 15.7.3, iOS 16.3 and iPadOS 16.3. An app may be able to access information about a user’s...

3.3CVSS5.8AI score0.00229EPSS
Exploits0References6
NVD
NVD
added 2023/02/27 8:15 p.m.28 views

CVE-2023-23505

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Monterey 12.6.3, macOS Ventura 13.2, watchOS 9.3, macOS Big Sur 11.7.3, iOS 15.7.3 and iPadOS 15.7.3, iOS 16.3 and iPadOS 16.3. An app may be able to access information about a user’s...

3.3CVSS2.6AI score0.00229EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2023/02/27 12:0 a.m.11 views

CVE-2023-23505

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Monterey 12.6.3, macOS Ventura 13.2, watchOS 9.3, macOS Big Sur 11.7.3, iOS 15.7.3 and iPadOS 15.7.3, iOS 16.3 and iPadOS 16.3. An app may be able to access information about a user’s...

2.6AI score0.00229EPSS
Exploits0References6
CVE
CVE
added 2023/02/27 12:0 a.m.329 views

CVE-2023-23505

CVE-2023-23505 describes a privacy issue where an app could access information about a user’s contacts due to insufficient private data redaction in log entries. Affected products include Apple platforms: macOS Monterey 12.6.3, macOS Ventura 13.2, macOS Big Sur 11.7.3, watchOS 9.3, iOS 15.7.3 and...

3.3CVSS2.6AI score0.00229EPSS
Exploits0References6Affected Software4
Tenable Nessus
Tenable Nessus
added 2023/01/20 12:0 a.m.141 views

Oracle Database Server for Windows (Jan 2023 CPU)

The versions of Oracle Database Server installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2023 CPU advisory. - Vulnerability in the Oracle Data Provider for .NET component of Oracle Database Server. Supported versions that are affected are 19c and...

9.8CVSS7.2AI score0.99931EPSS
Exploits49References19
Tenable Nessus
Tenable Nessus
added 2023/01/20 12:0 a.m.215 views

Oracle Database Server for Unix (Jan 2023 CPU)

The versions of Oracle Database Server installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2023 CPU advisory. - Vulnerability in the Oracle Database - Machine Learning for Python Python component of Oracle Database Server. The supported version that ...

9.8CVSS7.2AI score0.99931EPSS
Exploits49References18
OSV
OSV
added 2023/01/18 12:15 a.m.7 views

CVE-2023-21827

Vulnerability in the Oracle Database Data Redaction component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle...

4.3CVSS6.6AI score0.00453EPSS
Exploits0References1
NVD
NVD
added 2023/01/18 12:15 a.m.24 views

CVE-2023-21827

Vulnerability in the Oracle Database Data Redaction component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle...

4.3CVSS3.2AI score0.00453EPSS
Exploits0References1
Prion
Prion
added 2023/01/18 12:15 a.m.22 views

Design/Logic Flaw

Vulnerability in the Oracle Database Data Redaction component of Oracle Database Server. Supported versions that are affected are 19c and 21c. Easily exploitable vulnerability allows low privileged attacker having Create Session privilege with network access via Oracle Net to compromise Oracle...

4CVSS3.4AI score0.00453EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/01/17 11:35 p.m.62 views

CVE-2023-21827

The CVE-2023-21827 entry describes a vulnerability in the Oracle Database Data Redaction component affecting Oracle Database Server 19c and 21c. The flaw allows a low-privileged attacker with Create Session privilege and network access via Oracle Net to read a subset of Data Redaction data. The a...

4.3CVSS3.1AI score0.00453EPSS
Exploits0References1Affected Software1
0day.today
0day.today
added 2023/01/03 12:0 a.m.419 views

Oracle DBMS_REDACT Dynamic Data Masking Bypass Vulnerability

Proof of concept overview on how the DBMSREDACT Dynamic Data Masking security feature in Oracle can be bypassed. Affected versions include 19c and 21c. Title: ByPassing DBMSREDACT Dynamic Data Masking security feature in Oracle database system Product: Database Manufacturer: Oracle Affected...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/03 12:0 a.m.279 views

Oracle DBMS_REDACT Dynamic Data Masking Bypass

Title: ByPassing DBMSREDACT Dynamic Data Masking security feature in Oracle database system Product: Database Manufacturer: Oracle Affected Versions: 19c,21c Tested Versions: 19c,21c CVE Reference: N/A Author of Advisory: Emad Al-Mousa Overview: DBMSREDACT package provides an interface to Oracle...

7.4AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/26 3:31 a.m.22 views

Security Bulletin: InfoSphere Guardium Data Redaction Java API Documentation Frame Injection Vulnerability (CVE-2013-1571)

Abstract Java API Documentation contains a frame injection vulnerability. Content VULNERABILITY DETAILS: CVEID: CVE-2013-1571 DESCRIPTION: HTML documentation generated by the Javadoc tool contains a security vulnerability. The vulnerability allows an attacker to craft a malicious link to the...

4.3CVSS7.5AI score0.66817EPSS
Exploits1
Rows per page
Query Builder