109 matches found
NewStart CGSL CORE 5.05 / MAIN 5.05 : cups Multiple Vulnerabilities (NS-SA-2021-0161)
The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has cups packages installed that are affected by multiple vulnerabilities: - A localhost.localdomain whitelist entry in validhost in scheduler/client.c in CUPS before 2.2.2 allows remote attackers to execute arbitrary IPP...
Apple CFNetwork Cache Input Validation Error Vulnerability
Apple CFNetwork Cache is an Apple Inc. component necessary for handling networks in IOS mobile devices. A security vulnerability exists in Apple CFNetwork Cache that could allow a remote attacker to execute arbitrary code on the target system. The following products and versions are affected: mac...
Apple CrashReporter Authorization Issues Vulnerability
Apple CrashReporter is a core component of Apple Inc. that is used in mobile devices for monitoring system crash events. An authorization issue vulnerability exists in Apple CrashReporter that stems from the application not properly imposing security restrictions within the Crash Reporter compone...
Apple CoreGraphics Buffer Error Vulnerability
Apple CoreGraphics is a core component from Apple Inc. that is used in mobile devices for graphics drawing. Apple CoreGraphics suffers from a buffer error vulnerability that stems from a boundary error when handling fonts in the CoreGraphics component in macOS. A remote attacker could create a...
Apple ImageIO Buffer Error Vulnerability
Apple ImageIO is an Apple Inc. component necessary for parsing and writing image data in IOS mobile devices. A security vulnerability exists in Apple ImageIO, where processing of maliciously crafted images may result in heap corruption. The following products and versions are affected: macOS Moja...
Apple macOS Buffer Error Vulnerability
Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS where processing of maliciously crafted images may result in arbitrary code execution. The following products and versions are affected: macOS Mojave 10.14.6,...
Apple CoreAudio Buffer Error Vulnerability
Apple CoreAudio is an American Apple component for processing audio in macOS devices. A security vulnerability exists in Apple CoreAudio, where processing of maliciously crafted audio files may result in arbitrary code execution. The following products and versions are affected: macOS Mojave...
Apple macOS Security Breach
Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS. No information about this vulnerability is available at this time, so please stay tuned to CNNVD or the manufacturer's announcement. The following products and...
Apple ImageIO Buffer Error Vulnerability
Apple ImageIO is an Apple Inc. component necessary for parsing and writing image data in IOS mobile devices. A security vulnerability exists in Apple ImageIO where processing of maliciously crafted fonts may result in a process memory leak. The following products and versions are affected: macOS...
Apple CoreText Security Vulnerability
Apple CoreText is a core component of Apple Inc. that is used for drawing text drawings in mobile devices. A security vulnerability exists in Apple CoreText, where processing of maliciously crafted font files may result in arbitrary code execution. The following products and versions are affected...
Apple macOS Buffer Error Vulnerability
Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS where a malicious application may be able to execute arbitrary code with system privileges. The following products and versions are affected: macOS Mojave 10.14....
Apple macOS Buffer Error Vulnerability
Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOs where applications may be able to execute arbitrary code with kernel privileges. The following products and versions are affected: macOS Mojave 10.14.6, macOS...
Apple macOS Buffer Error Vulnerability
Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS. The vulnerability originates from a memory corruption. Applications may be able to execute arbitrary code with kernel privileges. The following products and...
Apple macOS Buffer Error Vulnerability
Apple macOS is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS where a malicious application may be able to execute arbitrary code with system privileges. The following products and versions are affected: macOS Mojave 10.14....
Apple Kernel Security Vulnerability
The Apple Kernel is the kernel for Apple devices from Apple Inc. in the United States. A security vulnerability exists in the Apple Kernel that originates from a malicious application that may cause unexpected memory changes in processes belonging to the DTrace trace. The following products and...
Apple Kernel Competitive Conditions Problem Vulnerability
The Apple Kernel is the kernel for Apple devices from Apple Inc. in the United States. A security vulnerability exists in the Apple Kernel where applications may be able to execute arbitrary code with kernel privileges. The following products and versions are affected: macOS Mojave 10.14.6, macOS...
Apple CoreAudio Buffer Error Vulnerability
Apple CoreAudio is an American Apple component for processing audio in macOS devices. A security vulnerability exists in Apple CoreAudio, where processing of maliciously crafted audio files may result in arbitrary code execution. The following products and versions are affected: macOS Mojave...
CVE-2019-8539
A memory initialization issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. A malicious application may be able to execute arbitrary code with system privileges...
CVE-2019-8696
CVE-2019-8696 is a buffer overflow in CUPS libcups, specifically in asn1_get_type and asn1_get_packed, that could allow arbitrary code execution when an attacker is in a privileged network position. The issue is fixed in macOS Mojave 10.14.6 and Security Update 2019-004 for High Sierra and Sierra...
CVE-2019-8687
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafted web content may lead to...