Lucene search

K

6 matches found

CVE
CVE
added 2021/09/08 3:15 p.m.436 views

CVE-2021-30654

This issue was addressed by removing additional entitlements. This issue is fixed in GarageBand 10.4.3. A local attacker may be able to read sensitive information.

5.5CVSS4.8AI score0.00129EPSS
CVE
CVE
added 2022/03/18 6:15 p.m.120 views

CVE-2022-22664

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in Logic Pro 10.7.3, GarageBand 10.4.6, macOS Monterey 12.3. Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution.

7.8CVSS7.4AI score0.00467EPSS
CVE
CVE
added 2022/03/18 6:15 p.m.109 views

CVE-2022-22657

A memory initialization issue was addressed with improved memory handling. This issue is fixed in Logic Pro 10.7.3, GarageBand 10.4.6, macOS Monterey 12.3. Opening a maliciously crafted file may lead to unexpected application termination or arbitrary code execution.

7.8CVSS7.5AI score0.00357EPSS
CVE
CVE
added 2024/03/12 9:15 p.m.90 views

CVE-2024-23300

A use-after-free issue was addressed with improved memory management. This issue is fixed in GarageBand 10.4.11. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution.

7.8CVSS7AI score0.00105EPSS
CVE
CVE
added 2025/01/30 7:15 p.m.75 views

CVE-2024-44142

The issue was addressed with improved bounds checks. This issue is fixed in GarageBand 10.4.12. Processing a maliciously crafted image may lead to arbitrary code execution.

7.8CVSS6.8AI score0.00019EPSS
CVE
CVE
added 2024/12/20 4:15 a.m.63 views

CVE-2023-42867

This issue was addressed with improved validation of the process entitlement and Team ID. This issue is fixed in GarageBand 10.4.9. An app may be able to gain root privileges.

7.8CVSS6.4AI score0.0009EPSS