Lucene search
K

119 matches found

CNNVD
CNNVD
added 2021/09/20 12:0 a.m.3 views

Apple tvOS 缓冲区错误漏洞

Apple tvOS is a set of smart TV operating systems from Apple USA. A buffer error vulnerability exists in Apple TV 4K and Apple TV HD, which stems from a boundary error when processing font files in FontParser. The vulnerability can be exploited to trick a victim into opening a specially crafted...

7.8CVSS7.9AI score0.01288EPSS
Exploits0References17
CNNVD
CNNVD
added 2021/04/27 12:0 a.m.2 views

Apple macOS 缓冲区错误漏洞

Apple macOS is a proprietary operating system developed by Apple Inc. for Mac computers. A buffer error vulnerability exists in macOS, which arises from a boundary error when processing font files in the FontParser component. 10.14.4 18E226, 10.14.4 18E227, 10.14.5 18F132, 10.14.6 18G84, 10.14.6...

7.8CVSS7.5AI score0.01421EPSS
Exploits0References11
CNNVD
CNNVD
added 2021/02/02 12:0 a.m.7 views

Apple FontParser Buffer Error Vulnerability

Apple FontParser is a font parsing program from Apple Inc. A security vulnerability exists in Apple FontParser that stems from a boundary condition when processing font files within the FontParser component in macOS. A remote attacker can create a specially crafted file, trick a victim into openi...

9.3CVSS7.1AI score0.02588EPSS
Exploits0References8
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 5:18 a.m.44 views

Security Bulletin: Vulnerability in IBM Java Runtime affects Rational Publishing Engine

Summary There is a vulnerability in IBM Java Runtime Environment, Versions 6 and 7 that are used by Rational Publishing Engine. Vulnerability Details CVEID: CVE-2016-5582 DESCRIPTION: A flaw in the Hotspot JIT compiler allows an attacker to disable the security manager and execute arbitrary code...

9.6CVSS0.6AI score0.05437EPSS
Exploits0Affected Software1
OSV
OSV
added 2017/06/08 1:29 p.m.3 views

CVE-2017-4913

VMware Workstation 12.x prior to 12.5.3 and Horizon View Client 4.x prior to 4.4.0 contain an integer-overflow vulnerability in the True Type Font parser in the TPView.dll. On Workstation, this may allow a guest to execute code or perform a Denial of Service on the Windows OS that runs Workstatio...

7.8CVSS5.9AI score0.00389EPSS
Exploits0References3
OSV
OSV
added 2017/06/08 1:29 p.m.4 views

CVE-2017-4909

VMware Workstation 12.x prior to 12.5.3 and Horizon View Client 4.x prior to 4.4.0 contain a heap buffer-overflow vulnerability in TrueType Font TTF parser in the TPView.dll. On Workstation, this may allow a guest to execute code or perform a Denial of Service on the Windows OS that runs...

7.8CVSS5.9AI score0.00369EPSS
Exploits0References4
CNVD
CNVD
added 2017/04/19 12:0 a.m.7 views

VMware Workstation and Horizon Client Integer Overflow Vulnerability

VMware Workstation is a paid and feature-rich set of virtual machine software.VMware Workstation Player is a free open source and simpler virtual machine software.Horizon Client for Windows is used to virtualize desktops and applications. VMware Workstation and Horizon Client have an integer...

7.8CVSS7.6AI score0.00389EPSS
Exploits0References1
CNVD
CNVD
added 2017/04/19 12:0 a.m.14 views

Multiple Read/Write Vulnerabilities in VMware Workstation and Horizon View Client

VMware Workstation is a paid and feature-rich set of virtual machine software.VMware Workstation Player is a free open source and simpler virtual machine software.Horizon Client for Windows is used to virtualize desktops and applications. VMware Workstation and Horizon View Client have multiple...

7.8CVSS7.5AI score0.00369EPSS
Exploits0References1
CNVD
CNVD
added 2017/04/06 12:0 a.m.1 views

Apple iOS/tvOS/macOS/watchOS Denial of Service Vulnerability (CNVD-2017-05003)

iOS is a mobile operating system developed by Apple Inc. First announced at Macworld on January 9, 2007, it was initially designed for use with the iPhone, and has since been applied to the iPod touch, iPad, and Apple TV. tvOS is an Apple-developed system based on iOS. tvOS is the operating syste...

7.8CVSS7.8AI score0.01686EPSS
Exploits0References1
CNVD
CNVD
added 2017/04/06 12:0 a.m.7 views

Apple iOS/tvOS/macOS/watchOS Information Disclosure Vulnerability

iOS is a mobile operating system developed by Apple Inc. First announced at the Macworld conference on January 9, 2007, it was originally designed for use with the iPhone, and has since been applied to the iPod touch, iPad, and Apple TV. tvOS is an Apple-developed system based on iOS. tvOS is the...

7.1CVSS6.5AI score0.01313EPSS
Exploits0References1
OSV
OSV
added 2017/04/02 1:59 a.m.1 views

CVE-2017-2439

An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10.12.4 is affected. tvOS before 10.2 is affected. watchOS before 3.2 is affected. The issue involves the "FontParser" component. It allows remote attackers to obtain sensitive information or cause a deni...

7.1CVSS7.3AI score0.01313EPSS
Exploits0References6
OSV
OSV
added 2017/04/02 1:59 a.m.1 views

CVE-2017-2406

An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10.12.4 is affected. tvOS before 10.2 is affected. watchOS before 3.2 is affected. The issue involves the "FontParser" component. It allows remote attackers to execute arbitrary code or cause a denial of...

7.8CVSS7.6AI score0.01701EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2017/03/02 12:0 a.m.4 views

Vulnerabilities of iOS and Mac OS X operating systems, which allow attackers to trigger service failures or obtain confidential information

The vulnerability of the FontParser component in iOS and Mac OS X operating systems is related to the lack of protection for service data. Exploiting this vulnerability can allow a malicious actor to obtain confidential information or cause service failures such as reading out of memory or...

5.8CVSS7.3AI score0.01722EPSS
Exploits0References6Affected Software2
OSV
OSV
added 2017/02/20 8:59 a.m.2 views

CVE-2016-4691

An issue was discovered in certain Apple products. iOS before 10.2 is affected. macOS before 10.12.2 is affected. watchOS before 3.1.3 is affected. The issue involves the "FontParser" component. It allows remote attackers to execute arbitrary code or cause a denial of service memory corruption an...

8.8CVSS6.3AI score0.02389EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2016/10/14 12:0 a.m.5 views

Vulnerabilities of operating systems such as Mac OS X and iOS, which allow attackers to obtain confidential information from process memory

The vulnerability of the FontParser component in Mac OS X and iOS operating systems arises due to buffer overflow. Exploiting this vulnerability can allow a malicious actor to obtain confidential information from the process’s memory using a specially crafted font...

4.3CVSS7.6AI score0.02575EPSS
Exploits0References11Affected Software2
OSV
OSV
added 2016/09/25 10:59 a.m.0 views

CVE-2016-4718

Buffer overflow in FontParser in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows remote attackers to obtain sensitive information from process memory via a crafted font file...

6.5CVSS7.4AI score0.02575EPSS
Exploits0References10
OSV
OSV
added 2016/03/24 1:59 a.m.0 views

CVE-2016-1740

FontParser in Apple iOS before 9.3, OS X before 10.11.4, tvOS before 9.2, and watchOS before 2.2 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted PDF document...

7.8CVSS7.6AI score0.03958EPSS
Exploits0References10
CNVD
CNVD
added 2015/10/29 12:0 a.m.8 views

Apple iOS/OS X/watchOS FontParser Memory Corruption Vulnerability

OS X formerly Mac OS X is the latest version of Apple's proprietary operating system for the Macintosh computer. iOS is an operating system developed by Apple for mobile devices. A security vulnerability exists in FontParser in Apple iOS versions prior to 9.1, Apple OS X versions prior to 10.11.1...

6.8CVSS7.6AI score0.03224EPSS
Exploits0References1
CNVD
CNVD
added 2015/10/26 12:0 a.m.3 views

Apple Safari FontParser Arbitrary Code Execution Vulnerability

Safari is a web browser developed by Apple, Inc. and is the default browser that comes with the Mac OS X and iOS operating systems. A security vulnerability exists in Apple Safari's FontParser. As the program fails to properly parse font files. An attacker can exploit this vulnerability to execut...

6.8CVSS7.5AI score0.0478EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2015/08/28 12:0 a.m.6 views

Vulnerabilities of iOS and Mac OS X operating systems, allowing attackers to execute arbitrary code or cause system failures

The vulnerability of the FontParser component in iOS and Mac OS X operating systems arises due to buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or cause a service failure using the created font file...

7.5CVSS8.1AI score0.03643EPSS
Exploits0References5Affected Software2
Rows per page
Query Builder