60 matches found
Apple macOS Ventura 安全漏洞
Apple macOS Ventura is a desktop operating system from Apple Inc. in the United States. A security vulnerability exists in Apple macOS Ventura versions prior to 13.5. An attacker exploiting this vulnerability is able to gain root privileges...
Apple macOS Ventura 安全漏洞
Apple macOS Ventura is a desktop operating system from Apple Inc. in the United States. A security vulnerability exists in Apple macOS Ventura versions prior to 13.5. An attacker exploiting the vulnerability is able to elevate privileges...
PT-2023-8342 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.5 Description: The issue is related to a lack of access control in the macOS operating system, specifically in the crontabs task scheduler. This could allow an attacker to gain root privileges. The estimated number ...
PT-2023-26532 · Apple · Apple Macos
Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.5 Description: A race condition was addressed with improved state handling, allowing an app to potentially execute arbitrary code with kernel privileges. Recommendations: For versions prior to 13.5, update to macOS...
CVE-2023-22883
Zoom Client for IT Admin Windows installers before version 5.13.5 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability in an attack chain during the installation process to escalate their privileges to the SYSTEM user...
Zoom Client 缓冲区错误漏洞
Zoom Client is a video conferencing client application from Zoom USA that supports multiple platforms. A buffer error vulnerability exists in Zoom Client versions prior to 5.13.5, which can be exploited by an attacker to send specially crafted UDP traffic to a victim Zoom client, remotely causing...
SUSE CVE-2018-4181
In macOS High Sierra before 10.13.5, an issue existed in CUPS. This issue was addressed with improved access restrictions...
CVE-2022-21392
Vulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager component: Policy Framework. Supported versions that are affected are 13.4.0.0 and 13.5.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise...
Linux kernel 缓冲区错误漏洞
Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A buffer error vulnerability exists in Linux kernel 5.13.5 and earlier versions, which originates when the Linux kernel kernel allows a user to trigger the vulnerability by causing host operating system...
Forgerock ForgeRock OpenAM 注入漏洞
ForgeRock OpenAM is the United States ForgeRock Forgerock company's set of open source single sign-on framework SSO. The framework by providing the core identity services CoreServer to achieve a transparent single sign-on in a network architecture such as centralized , distributed single sign-on....
PT-2020-13500 · Gitlab +1 · Gitlab Ce/Ee +2
Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 12.10 through 13.3.8 GitLab CE/EE versions 13.4 through 13.4.4 GitLab CE/EE versions 13.5 through 13.5.1 Description: The Terraform API in GitLab CE/EE exposed the object storage signed URL on the delete operation,...
CVE-2020-9848
An authorization issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5. A person with physical access to an iOS device may be able to view notification contents from the lockscreen...
CVE-2020-9838
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5. A remote attacker may be able to cause arbitrary code execution...
CVE-2020-9837
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5. A remote attacker may be able to leak memory...
CVE-2020-9830
A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5. An application may be able to execute arbitrary code with kernel privileges...
CVE-2020-9844
A double free issue was addressed with improved memory management. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5. A remote attacker may be able to cause unexpected system termination or corrupt kernel memory...
DEBIAN-CVE-2020-9807
A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to...
DEBIAN-CVE-2020-9806
A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 13.5 and iPadOS 13.5, tvOS 13.4.5, watchOS 6.2.5, Safari 13.1.1, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing maliciously crafted web content may lead to...
CVE-2020-9792
A validation issue was addressed with improved input sanitization. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5. A USB device may be able to cause a denial of service...
PT-2020-20764 · Apple · Ios +2
Name of the Vulnerable Software and Affected Versions: iOS versions prior to 13.5 iPadOS versions prior to 13.5 macOS Catalina versions prior to 10.15.5 Description: A validation issue was addressed with improved input sanitization, which may allow a USB device to cause a denial of service...