PT-2021-18841 · Apple · Mojave +4

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.4 Security Update versions prior to 2021-003 on Catalina Security Update versions prior to 2021-004 on Mojave iOS versions prior to 14.6 iPadOS versions prior to 14.6 Description: An out-of-bounds read issue was...

CVE-2021-1086

NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager vGPU plugin where it allows guests to control unauthorized resources, which may lead to integrity and confidentiality loss or information disclosure. This affects vGPU version 12.x prior to 12.2, version 11.x prior to 11.4 and...

Cisco Data Center Network Manager SQL Injection Vulnerability

Cisco Data Center Network Manager DCNM is a data center management system from Cisco. The system works with Cisco Nexus and MDS series switches and provides storage visualization, configuration and troubleshooting. A SQL injection vulnerability exists in the Web management interface in Cisco DCNM...

Cisco Data Center Network Manager Cross-Site Scripting Vulnerability (CNVD-2020-42254)

Cisco Data Center Network Manager DCNM is a data center management system from Cisco. The system works with Cisco Nexus and MDS series switches and provides storage visualization, configuration, and troubleshooting. A cross-site scripting vulnerability exists in the Web management interface in...

CVE-2018-4238

An issue was discovered in certain Apple products. iOS before 11.4 is affected. The issue involves the "Siri" component. It allows physically proximate attackers to bypass the lock-screen protection mechanism and enable Siri...

Code injection

An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10.13.5 is affected. The issue involves the "Security" component. It allows web sites to track users by leveraging the transmission of S/MIME client certificates...

Code injection

An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the "WebKit" component. It allows remote...

CVE-2018-4237

An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10.13.5 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "libxpc" component. It allows attackers to gain privileges via a crafted app that leverages a...

Apple iOS and macOS High Sierra iBooks Input Validation Vulnerability

Apple iOS and macOS High Sierra are both products of Apple Inc. Apple iOS is an operating system for mobile devices; macOS High Sierra is a specialized operating system for Mac computers. iBooks is one of the e-book reading components. A security vulnerability exists in the iBooks component in...

Apple iOS Magnifier Permission Vulnerability

Apple iOS is an operating system developed by Apple for mobile devices, and Magnifier is one of the screen magnification components. A security vulnerability exists in the Magnifier component in Apple iOS versions prior to 11.4. An attacker in close physical proximity could exploit this...