CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

151 matches found

OSV•added 2021/04/02 6:15 p.m.•0 views

CVE-2021-1769

A logic issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. A malicious attacker with arbitrary read and write capability may be able to bypas...

5.5CVSS6.2AI score0.00307EPSS

Exploits0References4

NVD•added 2021/04/02 6:15 p.m.•14 views

CVE-2021-1769

5.5CVSS0.00307EPSS

Exploits0References4

Prion•added 2021/04/02 6:15 p.m.•15 views

Authentication flaw

2.1CVSS5.8AI score0.00307EPSS

Exploits0References4Affected Software6

CVE•added 2021/04/02 5:55 p.m.•90 views

CVE-2021-1769

CVE-2021-1769 describes a logic issue in macOS/iOS/watchOS/tvOS/iPadOS components where improved validation fixes allow bypassing Pointer Authentication. The vulnerability is triggered by a malicious attacker with arbitrary read/write capabilities and results in potential bypass of Pointer Authen...

5.5CVSS5.8AI score0.00307EPSS

Exploits0References4Affected Software6

Cvelist•added 2021/04/02 5:55 p.m.•19 views

CVE-2021-1769

6.3AI score0.00307EPSS

Exploits0References4

CNNVD•added 2021/02/02 12:0 a.m.•5 views

Apple macOS Security Breach

Apple macOS is a proprietary operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS, which is caused by an error in the handling of authentication requests in the Swift component of macOS. A local user with arbitrary read and write capabilities...

5.5CVSS6.2AI score0.00307EPSS

Exploits0References8

OSV•added 2020/10/16 5:15 p.m.•1 views

CVE-2020-9910

Multiple issues were addressed with improved logic. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, Safari 13.1.2, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. A malicious attacker with arbitrary read and write capability may be able t...

8.8CVSS5.8AI score0.02163EPSS

Exploits1References7

NVD•added 2020/10/16 5:15 p.m.•19 views

CVE-2020-9910

8.8CVSS0.02163EPSS

Exploits1References7

OSV•added 2020/10/16 5:15 p.m.•1 views

CVE-2020-9870

A logic issue was addressed with improved validation. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8. An attacker with memory write capability may be able to bypass pointer authentication codes and run arbitrary code...

8.8CVSS7.2AI score

Exploits0References3

NVD•added 2020/10/16 5:15 p.m.•20 views

CVE-2020-9870

8.8CVSS0.01971EPSS

Exploits1References3

Prion•added 2020/10/16 5:15 p.m.•24 views

Design/Logic Flaw

6.5CVSS7.5AI score0.01971EPSS

Exploits1References3Affected Software4

Prion•added 2020/10/16 5:15 p.m.•25 views

Authentication flaw

6.5CVSS8.2AI score0.02163EPSS

Exploits1References7Affected Software7

CVE•added 2020/10/16 4:44 p.m.•150 views

CVE-2020-9910

CVE-2020-9910 is a WebKit-related vulnerability that allowed a malicious attacker with arbitrary read and write capability to bypass Pointer Authentication. Apple's security updates indicate this issue affects iOS/iPadOS (13.6), tvOS (13.4.8), watchOS (6.2.8), Safari (13.1.2), and corresponding W...

8.8CVSS8.1AI score0.02163EPSS

Exploits1References7Affected Software7

Cvelist•added 2020/10/16 4:44 p.m.•24 views

CVE-2020-9910

8.3AI score0.02163EPSS

Exploits1References7

Cvelist•added 2020/10/16 4:33 p.m.•29 views

CVE-2020-9870

7.7AI score0.01971EPSS

Exploits1References3

Positive Technologies•added 2020/10/16 12:0 a.m.•1 views

PT-2020-5611 · Apple · Icloud +6

Name of the Vulnerable Software and Affected Versions: Apple iCloud versions prior to 7.19 and prior to 11.2 Apple iTunes versions prior to 12.10.7 Apple Safari versions prior to 13.1.1 Apple iPadOS versions prior to 13.5 Apple iPhoneOS versions prior to 13.5 Apple tvOS versions prior to 13.4.8...

8.8CVSS7.4AI score0.02163EPSS

Exploits1References12

Positive Technologies•added 2020/10/16 12:0 a.m.•3 views

PT-2020-20821 · Apple · Macos Catalina +3

Name of the Vulnerable Software and Affected Versions: Apple iOS versions prior to 13.6 Apple iPadOS versions prior to 13.6 Apple macOS Catalina versions prior to 10.15.6 Apple tvOS versions prior to 13.4.8 Description: A logic issue was addressed with improved validation, allowing an attacker wi...

8.8CVSS7.2AI score0.01971EPSS

Exploits1References6

Gitee•added 2020/09/10 11:10 p.m.•2 views

ios-resources

PoC exploit for iOS device. The primary CVE ID is not explicitly mentioned, but the repository contains resources for iOS hacking, including ARMv8 instruction set documentation and assembly language crash course. The target product/service is the iOS operating system, and the vulnerability...

6.7AI score

Exploits0

Microsoft CVE•added 2020/08/18 12:0 a.m.•1 views

A flaw was found in QEMU in the implementation of the Pointer Authentication (PAuth) support for ARM introduced in version 4.0 and fixed in version 5.0.0. A general failure of the signature generation process caused every PAuth-enforced pointer to be signed with the same signature. A local attacker could obtain the signature of a protected pointer and abuse this flaw to bypass PAuth protection for all programs running on QEMU.

...

5.5CVSS7AI score0.00319EPSS

Exploits0

RedHat Linux•added 2020/07/28 7:14 a.m.•0 views

qemu: weak signature generation in Pointer Authentication support for ARM

A flaw was found in QEMU in the implementation of the Pointer Authentication PAuth support for ARM. A general failure of the signature generation process caused every PAuth-enforced pointer to be signed with the same signature. A local attacker could obtain the signature of a protected pointer an...

5.5CVSS7AI score0.00319EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by