Lucene search
K

8349 matches found

UbuntuCve
UbuntuCve
added 2023/04/24 12:0 a.m.32 views

CVE-2023-27954

The issue was addressed by removing origin information. This issue is fixed in macOS Ventura 13.3, Safari 16.4, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, tvOS 16.4, watchOS 9.4. A website may be able to track sensitive user information...

6.5CVSS6.8AI score0.00926EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2023/04/24 12:0 a.m.48 views

CVE-2022-32885

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing maliciously crafted web content may lead to arbitrary code execution...

8.8CVSS7.3AI score0.00799EPSS
Exploits0References3
OSV
OSV
added 2023/04/24 12:0 a.m.2 views

UBUNTU-CVE-2023-27954

The issue was addressed by removing origin information. This issue is fixed in macOS Ventura 13.3, Safari 16.4, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, tvOS 16.4, watchOS 9.4. A website may be able to track sensitive user information...

6.5CVSS6.8AI score0.00926EPSS
Exploits0References4
Malwarebytes
Malwarebytes
added 2023/04/21 3:0 a.m.15 views

iOS Lockdown Mode effective against NSO zero-click exploit

Apples Lockdown Mode feature alerted a victim to one of the latest NSO exploits, according to a report by Citizen Lab. image courtesy of Citizen Lab This is a huge deal since it shows how useful Lockdown Mode can be, even against exploits developed by one of the worlds most notorious commercial...

6.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/04/20 12:0 a.m.35 views

RHEL 8 : webkit2gtk3 (RHSA-2023:1919)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:1919 advisory. WebKitGTK is the port of the portable web rendering engine WebKit to the GTK platform. Security Fixes: WebKitGTK: use-after-free leads to arbitrary...

8.8CVSS8.9AI score0.27076EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/04/20 12:0 a.m.41 views

Oracle Linux 8 : webkit2gtk3 (ELSA-2023-1919)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-1919 advisory. 2.36.7-1.3 - Add patch for CVE-2023-28205 Resolves: 2185740 Tenable has extracted the preceding description block directly from the Oracle Linux security...

8.8CVSS8.2AI score0.27076EPSS
Exploits0References2
Krebs on Security
Krebs on Security
added 2023/04/12 12:6 a.m.69 views

Microsoft (& Apple) Patch Tuesday, April 2023 Edition

Microsoft today released software updates to plug 100 security holes in its Windows operating systems and other software, including a zero-day vulnerability that is already being used in active attacks. Not to be outdone, Apple has released a set of important updates addressing two zero-day...

9.3AI score0.48973EPSS
Exploits12
Malwarebytes
Malwarebytes
added 2023/04/11 3:0 a.m.48 views

Apple releases emergency updates for two known-to-be-exploited vulnerabilities

On Friday April 7, 2023, Apple released iOS 16.4.1, iPadOS 16.4.1, and macOS 13.3.1 for the iPhone, iPad, and Mac, respectively, and our advice is to install them as soon as possible because all three updates include important security fixes. The Cybersecurity and Infrastructure Security Agency...

9.2AI score0.27076EPSS
Exploits0
NVD
NVD
added 2023/04/10 7:15 p.m.15 views

CVE-2023-28205

A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report...

8.8CVSS8.8AI score0.27076EPSS
Exploits0References5
NVD
NVD
added 2023/04/10 7:15 p.m.19 views

CVE-2022-46717

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16.2 and iPadOS 16.2. A user with physical access to a locked Apple Watch may be able to view user photos via accessibility features...

2.4CVSS2AI score0.00258EPSS
Exploits0References2
NVD
NVD
added 2023/04/10 7:15 p.m.13 views

CVE-2022-46703

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 15.7.2 and iPadOS 15.7.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2. An app may be able to read sensitive location information...

5.5CVSS5.7AI score0.00221EPSS
Exploits0References5
NVD
NVD
added 2023/04/10 7:15 p.m.22 views

CVE-2022-46716

A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2. Private Relay functionality did not match system settings...

7.5CVSS6.8AI score0.00491EPSS
Exploits0References2
OSV
OSV
added 2023/04/10 7:15 p.m.7 views

CVE-2023-28205

A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report...

8.8CVSS8.8AI score0.27076EPSS
Exploits0References5
NVD
NVD
added 2023/04/10 7:15 p.m.24 views

CVE-2023-28206

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1, iOS 15.7.5 and iPadOS 15.7.5, macOS Big Sur 11.7.6. An app may be able to execute arbitrary code with kernel privileges. App...

8.6CVSS8AI score0.24513EPSS
Exploits0References6
Prion
Prion
added 2023/04/10 7:15 p.m.22 views

Code injection

A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2. Private Relay functionality did not match system settings...

5CVSS6.9AI score0.00491EPSS
Exploits0References2Affected Software3
UbuntuCve
UbuntuCve
added 2023/04/10 7:15 p.m.69 views

CVE-2023-28205

A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report...

8.8CVSS7.4AI score0.27076EPSS
Exploits0References4
Prion
Prion
added 2023/04/10 7:15 p.m.21 views

Code injection

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16.2 and iPadOS 16.2. A user with physical access to a locked Apple Watch may be able to view user photos via accessibility features...

2.1CVSS3.6AI score0.00258EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2023/04/10 7:15 p.m.24 views

Design/Logic Flaw

A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report...

6.8CVSS8.8AI score0.27076EPSS
Exploits0References4Affected Software4
Prion
Prion
added 2023/04/10 7:15 p.m.28 views

Input validation

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1, iOS 15.7.5 and iPadOS 15.7.5, macOS Big Sur 11.7.6. An app may be able to execute arbitrary code with kernel privileges. App...

4.4CVSS8.2AI score0.24513EPSS
Exploits0References5Affected Software3
Prion
Prion
added 2023/04/10 7:15 p.m.26 views

Information disclosure

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 15.7.2 and iPadOS 15.7.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2. An app may be able to read sensitive location information...

1.9CVSS5.3AI score0.00221EPSS
Exploits0References5Affected Software3
Rows per page
Query Builder