285 matches found
CVE-2024-23280
An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. A maliciously crafted webpage may be able to fingerprint the user...
UBUNTU-CVE-2024-23280
An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. A maliciously crafted webpage may be able to fingerprint the user...
CVE-2024-23280
An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. A maliciously crafted webpage may be able to fingerprint the user...
CVE-2024-23280
An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. A maliciously crafted webpage may be able to fingerprint the user...
CVE-2024-23280
An injection issue was addressed with improved validation. This issue is fixed in Safari 17.4, iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, watchOS 10.4. A maliciously crafted webpage may be able to fingerprint the user...
CVE-2024-23280
The CVE-2024-23280 entry concerns an injection issue in WebKitGTK/WebKit2GTK where maliciously crafted web content could fingerprint a user. The core detail from connected sources shows the vulnerability affects WebKitGTK/WebKit2GTK components used in Linux/macOS ecosystems, with the underlying c...
CVE-2024-23274
An injection issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5. An app may be able to elevate privileges...
CVE-2024-23274
CVE-2024-23274 involves an injection issue addressed by input validation improvements. It is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, and macOS Ventura 13.6.5, where an app may be able to elevate privileges. The NVD entry lists a high impact (C/H, I/H, A/H) with LOCAL attack vector and ...
CVE-2024-23268
An injection issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5. An app may be able to elevate privileges...
CVE-2024-23268
CVE-2024-23268 is an injection issue that (per the NVD entry) was addressed by input validation improvements and is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, and macOS Ventura 13.6.5. The vulnerability could allow an app to elevate privileges. Affected software is macOS on the listed ver...
macOS 12.x < 12.7.4 Multiple Vulnerabilities (HT214083)
The remote host is running a version of macOS / Mac OS X that is 12.x prior to 12.7.4. It is, therefore, affected by multiple vulnerabilities: - This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, macOS Monterey 12.7.4,...
PT-2024-21413 · Unknown · School Task Manager
Name of the Vulnerable Software and Affected Versions: School Task Manager version 1.0 Description: A SQL Injection issue allows a remote attacker to obtain sensitive information via a crafted payload to the "delete-task.php" component. This enables unauthorized access to data. Recommendations: F...
PT-2023-15862 · Sciencelogic · Sciencelogic Sl1
Name of the Vulnerable Software and Affected Versions: ScienceLogic SL1 affected versions not specified Description: A SQL injection issue exists in the "admin dynamic app mib errors" feature, where unsanitized user-controlled input is passed directly to a SQL query, allowing the injection of...
CVE-2023-38609
An injection issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.5. An app may be able to bypass certain Privacy preferences...
CVE-2023-38609
An injection issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.5. An app may be able to bypass certain Privacy preferences...
CVE-2023-38609
An injection issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.5. An app may be able to bypass certain Privacy preferences...
CVE-2023-38609
An injection issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.5. An app may be able to bypass certain Privacy preferences...
CVE-2023-38609
CVE-2023-38609 is an injection issue in macOS/macOS Ventura prior to 13.5 that could allow an app to bypass certain Privacy preferences. Apple fixed this by improving input validation, with the vulnerability addressed in macOS Ventura 13.5. Remediation per the sources is to update to macOS Ventur...
PT-2023-26529 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.5 Description: An injection issue was addressed with improved input validation, allowing an app to potentially bypass certain Privacy preferences. Recommendations: For macOS versions prior to 13.5, update to macOS...
PT-2023-22597 · Cyberghost · Cyberghostvpn Windows Client
Name of the Vulnerable Software and Affected Versions: CyberGhostVPN Windows Client versions prior to 8.3.10.10015 Description: A DLL injection issue was found in the Dashboard.exe component of the CyberGhostVPN Windows Client. Recommendations: For versions prior to 8.3.10.10015, update to versio...