Apple多款产品 安全漏洞

Apple Safari, among others, are products of the American company Apple. Apple Safari is a web browser that is the default browser included with the Mac OS X and iOS operating systems. Apple iOS is an operating system developed for mobile devices. Apple iPadOS is an operating system for iPad...

CVE-2025-46316

CVE-2025-46316 describes an out-of-bounds read vulnerability that occurs when processing a malicious Pages document. The root cause is insufficient bounds checking, addressed by improved input validation. Affected software includes Pages 15.1 on macOS Tahoe 26.1, as well as iOS 26.1 and iPadOS 26...

Mozilla Thunderbird < 78.4.2

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 78.4.2. It is, therefore, affected by a vulnerability as referenced in the mfsa2020-49 advisory. - In certain circumstances, the MCallGetProperty opcode can be emitted with unmet assumptions resulting in an...

Apple macOS 安全漏洞

Apple macOS is a specialized operating system developed for Mac computers by Apple Inc. in the United States. A security vulnerability exists in Apple macOS that stems from a privacy issue and could lead to applications accessing sensitive user data...

部分Apple产品 安全漏洞

Apple Safari is a web browser from Apple Inc. and is the default browser that comes with the Mac OS X and iOS operating systems. A security vulnerability exists in some Apple products, which originates from a remote attacker who may be able to break into the web content sandbox. The following...

PT-2023-21615 · Apple · Macos Monterey +7

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 iOS versions prior to 16.4 iPadOS versions prior to 16.4 iOS versions prior to 15.7.6 iPadOS versions prior to 15.7.6 macOS Monterey versions prior to 12.6.4 macOS Big Sur versions prior to 11.7.7 tvOS versions...

SUSE CVE-2010-1399

WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1 on Mac OS X 10.4, accesses uninitialized memory during a selection change on a form input element, which allows remote attackers to execute arbitrary code or cause a denial of service application crash via...

SUSE CVE-2014-0518

Adobe Flash Player before 13.0.0.214 on Windows and OS X and before 11.2.202.359 on Linux, Adobe AIR SDK before 13.0.0.111, and Adobe AIR SDK & Compiler before 13.0.0.111 allow attackers to bypass intended access restrictions via unspecified vectors, a different vulnerability than CVE-2014-0517,...

DEBIAN-CVE-2022-22620

A use after free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.2.1, iOS 15.3.1 and iPadOS 15.3.1, Safari 15.3 v. 16612.4.9.1.8 and 15612.4.9.1.8. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a...

UBUNTU-CVE-2021-38510

The executable file warning was not presented when downloading .inetloc files, which, due to a flaw in Mac OS, can run commands on a user's computer.Note: This issue only affected Mac OS operating systems. Other operating systems are unaffected.. This vulnerability affects Firefox 94, Thunderbird...

CVE-2021-31315

Telegram Android 7.1.0 2090, Telegram iOS 7.1, and Telegram macOS 7.1 are affected by a Stack Based Overflow in the blit function of their custom fork of the rlottie library. A remote attacker might be able to access Telegram's stack memory out-of-bounds on a victim device via a malicious animate...

UBUNTU-CVE-2021-21204

Use after free in Blink in Google Chrome on OS X prior to 90.0.4430.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

Adobe Bridge CC Memory Corruption Vulnerability (CNVD-2019-41627)

Adobe Bridge CC is a file viewer from the American company Audobee Adobe. A security vulnerability exists in Adobe Bridge CC 9.1 and earlier versions for Window and macOS based platforms. An attacker can exploit the vulnerability to obtain sensitive information...

chromium-browser: Insufficient policy enforcement

Insufficient restrictions on what can be done with Apple Events in Google Chrome on macOS prior to 72.0.3626.81 allowed a local attacker to execute JavaScript via Apple Events...

DEBIAN-CVE-2017-2519

An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. tvOS before 10.2.1 is affected. watchOS before 3.2.2 is affected. The issue involves the "SQLite" component. It allows remote attackers to execute arbitrary code or cause a denial o...

Platform Independent Meta Information Editor: ExifTool

Platform Independent Meta Information Editor ExifTool is a platform-independent Perl library plus a command-line application for reading, writing and editing meta information in a wide variety of files. ExifTool supports many different metadata formats including EXIF, GPS, IPTC, XMP, JFIF, GeoTIF...

CVE-2016-6988

Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different...

The vulnerabilities in iOS and Mac OS X operating systems allow attackers to trigger service failures or execute arbitrary code in privileged contexts.

The vulnerability of the kernel in iOS and Mac OS X operating systems is related to pointer dereferencing errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in privileged context or trigger a service denial zero pointer dereferencing through a specially creat...

CVE-2016-0962

Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allow attackers to execute arbitrary code or cause a deni...

UBUNTU-CVE-2016-1010

Integer overflow in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577 on Linux, Adobe AIR before 21.0.0.176, Adobe AIR SDK before 21.0.0.176, and Adobe AIR SDK & Compiler before 21.0.0.176 allows attackers to execute arbitrary...