CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8330 matches found

Cvelist•added 2021/04/02 5:47 p.m.•18 views

CVE-2021-1741

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted image may lead to arbitrary code...

8.3AI score0.0102EPSS

Exploits0References4

CVE•added 2021/04/02 5:47 p.m.•98 views

CVE-2021-1741

CVE-2021-1741 is an out-of-bounds read in a macOS/iOS image-processing component. Processing a maliciously crafted image may lead to arbitrary code execution. It is fixed via macOS Big Sur 11.2, Security Update 2021-001 (Catalina 11.2, Mojave 11.2), watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4.

7.8CVSS8AI score0.0102EPSS

Exploits0References4Affected Software6

CVE•added 2021/04/02 5:45 p.m.•74 views

CVE-2020-29624

CVE-2020-29624 concerns a memory corruption issue in the processing of font files. The vulnerability is mitigated by improved input validation and is fixed across Apple platforms including watchOS 7.2, macOS Big Sur 11.1, Security Updates for Catalina and Mojave, and iOS/iPadOS 14.3, tvOS 14.3. A...

7.8CVSS7.9AI score0.01036EPSS

Exploits0References4Affected Software6

CVE•added 2021/04/02 5:44 p.m.•87 views

CVE-2020-29639

CVE-2020-29639 concerns an out-of-bounds read issue in the Apple font parsing component (FontParser) across Apple platforms. The public docs from Apple reference fixes via improved input validation for FontParser, with citations in iOS 14.0/iPadOS 14.0 and watchOS 7.0 advisories. Specifically, in...

5.5CVSS5.6AI score0.00659EPSS

Exploits0References1Affected Software2

Cvelist•added 2021/04/02 5:44 p.m.•34 views

CVE-2020-29639

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 14.0 and iPadOS 14.0. Processing a maliciously crafted font may result in the disclosure of process memory...

5.8AI score0.00659EPSS

Exploits0References1

Cvelist•added 2021/04/02 5:44 p.m.•25 views

CVE-2020-29623

"Clear History and Website Data" did not clear the history. The issue was addressed with improved data deletion. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, tvOS 14.3. A user may be unable to fully delete...

5.2AI score0.0036EPSS

Exploits0References6

AlpineLinux•added 2021/04/02 5:44 p.m.•52 views

CVE-2020-29623

3.3CVSS5.5AI score0.0036EPSS

Exploits0

Cvelist•added 2021/04/02 5:44 p.m.•29 views

CVE-2020-29619

An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 14.3, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, iCloud for Windows 12.0, watchOS 7.2. Processing a maliciously crafted image may...

7.1AI score0.00793EPSS

Exploits0References5

CVE•added 2021/04/02 5:43 p.m.•95 views

CVE-2020-29617

CVE-2020-29617 relates to an out-of-bounds read in ImageIO processing that could lead to heap corruption when handling maliciously crafted images. Affected software versions include tvOS 14.3; macOS Big Sur 11.1; Security Update 2020-001 Catalina and 2020-007 Mojave; iOS 14.3 and iPadOS 14.3; iCl...

7.8CVSS7AI score0.00793EPSS

Exploits0References5Affected Software7

Cvelist•added 2021/04/02 5:42 p.m.•29 views

CVE-2020-29615

An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 7.2, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, tvOS 14.3. Processing a maliciously crafted image may lead to a denial of servi...

5.7AI score0.00778EPSS

Exploits0References4

CVE•added 2021/04/02 5:42 p.m.•102 views

CVE-2020-29611

CVE-2020-29611 is an out-of-bounds write in ImageIO that could lead to arbitrary code execution when processing a malicious image. Apple lists fixes across multiple products/updates: tvOS 14.3, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 / iPad...

7.8CVSS7.8AI score0.01015EPSS

Exploits0References5Affected Software7

CVE•added 2021/04/02 5:41 p.m.•65 views

CVE-2020-29613

Apple fixed CVE-2020-29613 in iOS 14.3 / iPadOS 14.3. Description: a logic issue in state management could cause an enterprise app installation prompt to display the wrong domain. Root cause: state-management logic flaw. Impact: may display an incorrect domain during enterprise app installation p...

5.5CVSS5.6AI score0.00578EPSS

Exploits0References1Affected Software2

CVE•added 2021/04/02 5:40 p.m.•86 views

CVE-2020-29610

CVE-2020-29610 is an out-of-bounds read vulnerability in Apple's media stack, specifically impacting AudioToolboxCore MP4 parsing. The issue could disclose restricted memory when processing a maliciously crafted audio file. Affected products include Apple platforms on macOS Big Sur 11.1, watchOS ...

5.5CVSS5.5AI score0.00817EPSS

Exploits0References4Affected Software6

Cvelist•added 2021/04/02 5:40 p.m.•28 views

CVE-2020-29610

5.7AI score0.00817EPSS

Exploits0References4

CVE•added 2021/04/02 5:38 p.m.•98 views

CVE-2020-27951

CVE-2020-27951 affects Apple platforms (watchOS, iOS, iPadOS) and is described by multiple sources as an issue that allowed unauthorized code execution leading to an authentication policy violation. Apple’s security updates indicate fixes in watchOS 6.3, watchOS 7.2, iOS 12.5, and iOS/iPadOS 14.3...

7.8CVSS7.2AI score0.01061EPSS

Exploits0References4Affected Software3

Cvelist•added 2021/04/02 5:38 p.m.•23 views

CVE-2020-27951

This issue was addressed with improved checks. This issue is fixed in watchOS 6.3, iOS 12.5, iOS 14.3 and iPadOS 14.3, watchOS 7.2. Unauthorized code execution may lead to an authentication policy violation...

7.4AI score0.01061EPSS

Exploits0References4

Cvelist•added 2021/04/02 5:38 p.m.•18 views

CVE-2020-27946

An information disclosure issue was addressed with improved state management. This issue is fixed in watchOS 7.2, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, tvOS 14.3. Processing a maliciously crafted font may result in the...

5.5AI score0.00801EPSS

Exploits0References4

CVE•added 2021/04/02 5:38 p.m.•97 views

CVE-2020-27946

CVE-2020-27946 is an information-disclosure vulnerability tied to FontParser in Apple platforms. The issue arises when processing a maliciously crafted font, potentially allowing disclosure of process memory. Apple’s advisories indicate this affects watchOS 7.2 and various macOS/iOS/iPadOS/tvOS u...

5.5CVSS5.3AI score0.00801EPSS

Exploits0References4Affected Software6

CVE•added 2021/04/02 5:36 p.m.•86 views

CVE-2020-27943

CVE-2020-27943 describes a memory corruption bug in FontParser when processing font files, leading to arbitrary code execution. Apple fixes apply to tvOS 14.3, iOS/iPadOS 14.3, macOS Big Sur 11.1, and corresponding Security Updates for Catalina/Mojave, plus watchOS 7.2. The root cause is a font p...

7.8CVSS7.9AI score0.00982EPSS

Exploits0References4Affected Software5

Cvelist•added 2021/04/02 5:34 p.m.•23 views

CVE-2020-27933

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 13.6 and iPadOS 13.6, iCloud for Windows 7.20, watchOS 6.2.8, tvOS 13.4.8, macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra. Processing a maliciously...

8.4AI score0.00994EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by