84 matches found
CVE-2021-30905
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina. Processing a maliciously crafted file may disclose user information...
CVE-2021-30905
CVE-2021-30905 is an out-of-bounds read vulnerability fixed in Apple OS updates: iOS 15.1 / iPadOS 15.1, macOS Monterey 12.0.1, tvOS 15.1, watchOS 8.1, and macOS Security Update 2021-007 Catalina. Processing a maliciously crafted file may disclose user information. Affected component is title-lis...
CVE-2021-30902
A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.8.1 and iPadOS 14.8.1, iOS 15.1 and iPadOS 15.1. A local attacker may be able to cause unexpected application termination or arbitrary code execution...
CVE-2021-30900
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 14.8.1 and iPadOS 14.8.1, iOS 15.1 and iPadOS 15.1. A malicious application may be able to execute arbitrary code with kernel privileges...
CVE-2021-30894
A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 15.1 and iPadOS 15.1, tvOS 15.1. An application may be able to execute arbitrary code with kernel privileges...
CVE-2021-30890
A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15.1, watchOS 8.1, tvOS 15.1. Processing maliciously crafted web content may lead to universal cross site scripting...
CVE-2021-30888
An information leakage issue was addressed. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, iOS 14.8.1 and iPadOS 14.8.1, tvOS 15.1, watchOS 8.1. A malicious website using Content Security Policy reports may be able to leak information via redirect behavior...
CVE-2021-30887
CVE-2021-30887 is a WebKit-related logic issue affecting how Content Security Policy is enforced when processing malicious web content. The description states that improved restrictions fix the problem, with the vulnerability fixed in Apple platforms: macOS Monterey 12.0.1, iOS 15.1 and iPadOS 15...
CVE-2021-30881
An input validation issue was addressed with improved memory handling. This issue is fixed in iOS 15.1 and iPadOS 15.1, macOS Monterey 12.0.1, tvOS 15.1, watchOS 8.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. Unpacking a maliciously crafted archive may lead to arbitrary code...
CVE-2021-30875
A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue is fixed in iOS 15.1 and iPadOS 15.1. A local attacker may be able to view contacts from the lock screen...
CVE-2021-30900
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 14.8.1 and iPadOS 14.8.1, iOS 15.1 and iPadOS 15.1. A malicious application may be able to execute arbitrary code with kernel privileges. Recent assessments: Assessed Attacker Value: 0 Assessed...
PT-2021-18945 · Apple · Ios +2
Name of the Vulnerable Software and Affected Versions: iOS versions prior to 15.1 iPadOS versions prior to 15.1 tvOS versions prior to 15.1 Description: A memory corruption issue was addressed with improved input validation, allowing an application to potentially execute arbitrary code with kerne...
Apple macOS Big Sur 缓冲区错误漏洞
Apple macOS Big Sur is a mobile application app from Apple USA. A buffer error vulnerability exists in multiple Apple products, where an attacker could potentially disclose memory contents via a maliciously crafted USD file. The vulnerability is fixed in the following products and versions: macOS...
Apple macOS 缓冲区错误漏洞
Apple macOS is a suite of specialized operating systems developed by Apple Inc. for Mac computers. A buffer error vulnerability exists in several Apple products, where a malicious application may be able to execute arbitrary code using kernel privileges. The vulnerability is fixed in the followin...
PT-2021-7319 · Apple +9 · Ipados +13
Name of the Vulnerable Software and Affected Versions: macOS Monterey versions prior to 12.0.1 iOS versions prior to 15.1 iPadOS versions prior to 15.1 watchOS versions prior to 8.1 tvOS versions prior to 15.1 Description: A logic issue was addressed with improved state management. Processing...
PT-2021-7329 · Apple +7 · Ipados +11
Name of the Vulnerable Software and Affected Versions: macOS Monterey versions prior to 12.0.1 iOS versions prior to 15.1 iPadOS versions prior to 15.1 watchOS versions prior to 8.1 tvOS versions prior to 15.1 Description: The issue is related to a buffer overflow problem due to inadequate input...
CVE-2016-1351
The Locator/ID Separation Protocol LISP implementation in Cisco IOS 15.1 and 15.2 and NX-OS 4.1 through 6.2 allows remote attackers to cause a denial of service device reload via a crafted header in a packet, aka Bug ID CSCuu64279...
Code injection
The SSL VPN aka WebVPN feature in Cisco IOS 15.1 through 15.4 allows remote attackers to cause a denial of service memory consumption via crafted HTTP requests, aka Bug ID CSCuf51357...
CVE-2013-1144
Memory leak in the IKEv1 implementation in Cisco IOS 15.1 allows remote attackers to cause a denial of service memory consumption via unspecified 1 IPv4 or 2 IPv6 IKE packets, aka Bug ID CSCth81055...
CVE-2012-3923
The SSLVPN implementation in Cisco IOS 12.4, 15.0, 15.1, and 15.2, when DTLS is not enabled, does not properly handle certain outbound ACL configurations, which allows remote authenticated users to cause a denial of service device crash via a session involving a PPP over ATM PPPoA interface, aka...