Lucene search
K

53 matches found

cvelist
cvelist
added 2023/06/23 12:0 a.m.29 views

CVE-2023-32365

The issue was addressed with improved checks. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, iOS 16.5 and iPadOS 16.5. Shake-to-undo may allow a deleted photo to be re-surfaced without authentication...

5.2AI score0.00303EPSS
Exploits0References2
cve
cve
added 2023/06/23 12:0 a.m.1148 views

CVE-2023-32367

CVE-2023-32367: Apple documents an entitlement-related issue where an app may access user-sensitive data. The vulnerability is mitigated in iOS 16.5 and iPadOS 16.5, and macOS Ventura 13.4 (Patch/UPDATE_REQUIRED). No exploitation details are provided in the connected documents; remediation is to ...

5.5CVSS4.9AI score0.00238EPSS
Exploits0References2Affected Software3
prion
prion
added 2022/11/01 8:15 p.m.22 views

Design/Logic Flaw

The issue was addressed with improved memory handling. This issue is fixed in iOS 15.7.1 and iPadOS 15.7.1, iOS 16.1 and iPadOS 16, watchOS 9.1. An app may be able to execute arbitrary code with kernel privileges...

4.4CVSS7.9AI score0.00558EPSS
Exploits1References3Affected Software3
cve
cve
added 2022/11/01 12:0 a.m.75 views

CVE-2022-32932

CVE-2022-32932 affects Apple’s kernel interface (Apple Neural Engine path) via a double-fetch bug in ANECGetMutableOperationInfo() that can yield an out-of-bounds write when mutable procedure info is manipulated by a concurrent thread. Root cause: op_count is read twice to size and then populate ...

7.8CVSS8AI score0.00558EPSS
Exploits1References3Affected Software3
cve
cve
added 2022/09/20 12:0 a.m.99 views

CVE-2022-32795

CVE-2022-32795 corresponds to an Apple Safari/WebKit issue where visiting a malicious website could lead to address bar spoofing. The vulnerability is fixed in iOS 16, iOS 15.7, and iPadOS 15.7. Affected component: Safari/WebKit on Apple mobile platforms; root cause described as an issue in how t...

4.3CVSS4.9AI score0.00642EPSS
Exploits0References4Affected Software2
nvd
nvd
added 2022/08/24 8:15 p.m.33 views

CVE-2022-32894

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 15.6.1 and iPadOS 15.6.1, macOS Monterey 12.5.1. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively...

7.8CVSS0.03259EPSS
Exploits0References8
nvd
nvd
added 2022/05/26 8:15 p.m.19 views

CVE-2022-26751

A memory corruption issue was addressed with improved input validation. This issue is fixed in iTunes 12.12.4 for Windows, iOS 15.5 and iPadOS 15.5, Security Update 2022-004 Catalina, macOS Big Sur 11.6.6, macOS Monterey 12.4. Processing a maliciously crafted image may lead to arbitrary code...

7.8CVSS0.01638EPSS
Exploits0References5
cvelist
cvelist
added 2022/03/18 5:59 p.m.23 views

CVE-2022-22622

This issue was addressed with improved checks. This issue is fixed in iOS 15.4 and iPadOS 15.4. A person with physical access to an iOS device may be able to see sensitive information via keyboard suggestions...

4.2AI score0.00291EPSS
Exploits0References1
nvd
nvd
added 2021/08/24 7:15 p.m.41 views

CVE-2021-30932

The issue was addressed with improved permissions logic. This issue is fixed in iOS 15.2 and iPadOS 15.2. A person with physical access to an iOS device may be able to access contacts from the lock screen...

4.6CVSS0.00323EPSS
Exploits0References1
cve
cve
added 2021/08/24 6:50 p.m.71 views

CVE-2021-30948

CVE-2021-30948 affects Apple iOS and iPadOS; an inconsistent UI state management bug potentially allows a person with physical access to an iOS device to access stored passwords without authentication. The issue is fixed in iOS 15.2 / iPadOS 15.2. Vulnerable component details are not fully specif...

4.6CVSS3.7AI score0.00301EPSS
Exploits0References1Affected Software2
cve
cve
added 2021/08/24 6:50 p.m.613 views

CVE-2021-30900

CVE-2021-30900 affects Apple’s GPU Drivers in iOS/iPadOS (Smartphone OS); root cause is an out-of-bounds write leading to memory corruption. Impact: potential arbitrary code execution with kernel privileges, exploitable locally. Apple fixes were released in iOS 14.8.1 / iPadOS 14.8.1 and iOS 15.1...

9.3CVSS7.4AI score0.05204EPSS
In wildExploits0References4Affected Software3
cve
cve
added 2020/10/22 5:53 p.m.83 views

CVE-2020-9787

CVE-2020-9787 is a logic issue in WebKit/Safari affecting macOS Catalina and iOS/watchOS/tvOS platforms where some websites may not appear in Safari Preferences. The issue was addressed with improved restrictions and patches are provided in iOS 13.4 / iPadOS 13.4, macOS Catalina 10.15.4, tvOS 13....

5.3CVSS5.5AI score0.01257EPSS
Exploits0References4Affected Software5
apple
apple
added 2020/09/21 4:30 a.m.140 views

About the security content of iOS 13.5 and iPadOS 13.5 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.8CVSS0.6AI score0.77246EPSS
Exploits12Affected Software2
Rows per page
Query Builder