4291 matches found
Race condition
A race condition was addressed with improved locking. This issue is fixed in macOS Monterey 12.1, Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. A remote attacker may be able to cause unexpected application termination or heap corruption...
Race condition
A race condition was addressed with improved locking. This issue is fixed in macOS Monterey 12.0.1, macOS Big Sur 11.6.1. A malicious application may be able to execute arbitrary code with kernel privileges...
CVE-2021-31004
A race condition was addressed with improved locking. This issue is fixed in macOS Monterey 12.0.1, macOS Big Sur 11.5. An application may be able to gain elevated privileges...
CVE-2021-31004
CVE-2021-31004 is a race-condition vulnerability tracked across multiple sources (Apple macOS Monterey 12.0.1 and macOS Big Sur 11.5). The underlying issue is a race condition that can allow an application to gain elevated privileges, mitigated by improved locking/state handling. Apple’s fixes ar...
CVE-2021-30982
CVE-2021-30982 is a race condition vulnerability in macOS (reported as part of Apple updates). The public description states a race condition was addressed with improved locking, leading to fixes in macOS Monterey 12.1, Security Update 2021-008 Catalina, and macOS Big Sur 11.6.2. The impact note ...
CVE-2021-30982
A race condition was addressed with improved locking. This issue is fixed in macOS Monterey 12.1, Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. A remote attacker may be able to cause unexpected application termination or heap corruption...
CVE-2021-30937
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. A malicious application may be able to execute arbitrary code with kernel...
CVE-2021-30868
CVE-2021-30868 is a macOS local kernel-privilege issue caused by a race condition that was addressed with improved locking. The vulnerability could allow a malicious local application to execute arbitrary code with kernel privileges. Affected fixes include macOS Monterey 12.0.1 and macOS Big Sur ...
CVE-2021-30868
A race condition was addressed with improved locking. This issue is fixed in macOS Monterey 12.0.1, macOS Big Sur 11.6.1. A malicious application may be able to execute arbitrary code with kernel privileges...
CVE-2021-30857
A race condition was addressed with improved locking. This issue is fixed in Security Update 2021-005 Catalina, iOS 14.8 and iPadOS 14.8, tvOS 15, iOS 15 and iPadOS 15, watchOS 8, macOS Big Sur 11.6. A malicious application may be able to execute arbitrary code with kernel privileges...
PT-2021-18919 · Apple · Ipados +4
Name of the Vulnerable Software and Affected Versions: Apple macOS versions prior to Big Sur 11.6 Apple iOS versions prior to 14.8 and 15 Apple iPadOS versions prior to 14.8 and 15 Apple tvOS versions prior to 15 Apple watchOS versions prior to 8 Description: A race condition issue was addressed...
Information Disclosure
OpenStack Keystone allows information disclosure during account locking related to PCI DSS features. By guessing the name of an account and failing to authenticate multiple times, any unauthenticated actor could both confirm the account exists and obtain that account's corresponding UUID, which...
IBM Security Guardium Information Disclosure Vulnerability (CNVD-2021-65731)
IBM Security Guardium is a suite of platforms from IBM USA that provides data protection capabilities. The platform includes features such as customizable UI, report management and streamlined audit process building. IBM Security Guardium has a security vulnerability that stems from the use of...
IBM Security Guardium 安全漏洞
IBM Security Guardium is a suite of platforms from IBM USA that provides data protection capabilities. The platform includes features such as customizable UI, report management and streamlined audit process building. IBM Security Guardium has a security vulnerability that stems from the use of...
CVE-2021-38155
OpenStack Keystone 10.x through 16.x before 16.0.2, 17.x before 17.0.1, 18.x before 18.0.1, and 19.x before 19.0.1 allows information disclosure during account locking related to PCI DSS features. By guessing the name of an account and failing to authenticate multiple times, any unauthenticated...
CVE-2021-38155
OpenStack Keystone 10.x through 16.x before 16.0.2, 17.x before 17.0.1, 18.x before 18.0.1, and 19.x before 19.0.1 allows information disclosure during account locking related to PCI DSS features. By guessing the name of an account and failing to authenticate multiple times, any unauthenticated...
Information disclosure
OpenStack Keystone 10.x through 16.x before 16.0.2, 17.x before 17.0.1, 18.x before 18.0.1, and 19.x before 19.0.1 allows information disclosure during account locking related to PCI DSS features. By guessing the name of an account and failing to authenticate multiple times, any unauthenticated...
CVE-2021-38155
OpenStack Keystone 10.x through 16.x before 16.0.2, 17.x before 17.0.1, 18.x before 18.0.1, and 19.x before 19.0.1 allows information disclosure during account locking related to PCI DSS features. By guessing the name of an account and failing to authenticate multiple times, any unauthenticated...
CVE-2021-38155
OpenStack Keystone 10.x through 16.x before 16.0.2, 17.x before 17.0.1, 18.x before 18.0.1, and 19.x before 19.0.1 allows information disclosure during account locking related to PCI DSS features. By guessing the name of an account and failing to authenticate multiple times, any unauthenticated...
CVE-2021-38155
OpenStack Keystone 10.x through 16.x before 16.0.2, 17.x before 17.0.1, 18.x before 18.0.1, and 19.x before 19.0.1 allows information disclosure during account locking related to PCI DSS features. By guessing the name of an account and failing to authenticate multiple times, any unauthenticated...