Lucene search

K

380 matches found

CVE
CVE
added 2021/09/08 2:15 p.m.75 views

CVE-2021-30800

This issue was addressed with improved checks. This issue is fixed in iOS 14.7. Joining a malicious Wi-Fi network may result in a denial of service or arbitrary code execution.

8.8CVSS8.5AI score0.00171EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.75 views

CVE-2021-30957

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2, tvOS 15.2. Processing a maliciously crafted audio file may lead to arbitrary code execution.

7.8CVSS7.9AI score0.0085EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.75 views

CVE-2021-30995

A race condition was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. A malicious application may be able to elevate privileges.

7CVSS6.3AI score0.00179EPSS
CVE
CVE
added 2021/12/23 8:15 p.m.74 views

CVE-2018-4302

A null pointer dereference was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13, iCloud for Windows 7.0, watchOS 4, iOS 11, iTunes 12.7 for Windows. Processing maliciously crafted XML may lead to an unexpected application termination or arbitrary code execution.

7.8CVSS8.2AI score0.00424EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.74 views

CVE-2021-1781

A privacy issue existed in the handling of Contact cards. This was addressed with improved state management. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. A malicious application may be able to leak sensitive...

5.5CVSS5.4AI score0.00178EPSS
CVE
CVE
added 2021/09/08 2:15 p.m.74 views

CVE-2021-30743

An out-of-bounds write was addressed with improved input validation. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4, Security Update 2021-003 Catalina, tvOS 14.5, macOS Big Sur 11.3. Processing a maliciously crafted image may lead to arbitrary code execution.

7.8CVSS8.1AI score0.00424EPSS
CVE
CVE
added 2021/10/19 2:15 p.m.74 views

CVE-2021-30825

This issue was addressed with improved checks. This issue is fixed in iOS 15 and iPadOS 15. A local attacker may be able to cause unexpected application termination or arbitrary code execution.

7.8CVSS7.3AI score0.00073EPSS
CVE
CVE
added 2021/10/19 2:15 p.m.74 views

CVE-2021-30837

A memory consumption issue was addressed with improved memory handling. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8, tvOS 15. An application may be able to execute arbitrary code with kernel privileges.

9.3CVSS7.6AI score0.00383EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.74 views

CVE-2021-30871

This issue was addressed with a new entitlement. This issue is fixed in iOS 14.7, watchOS 7.6, macOS Big Sur 11.5. A local attacker may be able to access analytics data.

5.5CVSS5.6AI score0.00143EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.73 views

CVE-2020-27933

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 13.6 and iPadOS 13.6, iCloud for Windows 7.20, watchOS 6.2.8, tvOS 13.4.8, macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra. Processing a maliciously craft...

7.8CVSS8.3AI score0.00483EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.73 views

CVE-2020-27943

A memory corruption issue existed in the processing of font files. This issue was addressed with improved input validation. This issue is fixed in tvOS 14.3, iOS 14.3 and iPadOS 14.3, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, watchOS 7.2. Processing a m...

7.8CVSS7.9AI score0.00433EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.73 views

CVE-2020-27948

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in watchOS 7.2, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, tvOS 14.3. Processing a maliciously crafted audio file may lead to arbitrar...

7.8CVSS7.8AI score0.00461EPSS
CVE
CVE
added 2021/09/08 2:15 p.m.73 views

CVE-2021-30733

An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave, macOS Big Sur 11.4, watchOS 7.5. Processing a maliciously crafted font may result in the disclosure of ...

5.5CVSS5.7AI score0.00334EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.73 views

CVE-2021-30945

This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. A local attacker may be able to elevate their privileges.

7.8CVSS6.7AI score0.00112EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.72 views

CVE-2020-9926

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8, watchOS 6.2.8, iCloud for Windows 7.20, macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra. Processing maliciously crafted X...

7.8CVSS8.3AI score0.00667EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.72 views

CVE-2020-9960

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.0.1, tvOS 14.0, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, watchOS 7.0, iOS 14.0 and iPadOS 14.0. Processing a maliciously crafted audio file may ...

7.8CVSS7.6AI score0.00395EPSS
CVE
CVE
added 2021/09/08 3:15 p.m.72 views

CVE-2021-1762

An out-of-bounds write was addressed with improved input validation. This issue is fixed in iOS 14.4 and iPadOS 14.4, macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave. Processing a maliciously crafted USD file may lead to unexpected application termination or a...

7.8CVSS7.8AI score0.0032EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.72 views

CVE-2021-1777

This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted image may lead to arbitrary code execution.

7.8CVSS8AI score0.00402EPSS
CVE
CVE
added 2021/09/08 2:15 p.m.72 views

CVE-2021-30770

A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, tvOS 14.7, watchOS 7.6. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations.

5.5CVSS6AI score0.00045EPSS
CVE
CVE
added 2021/10/19 2:15 p.m.72 views

CVE-2021-30810

An authorization issue was addressed with improved state management. This issue is fixed in iOS 15 and iPadOS 15, watchOS 8, tvOS 15. An attacker in physical proximity may be able to force a user onto a malicious Wi-Fi network during device setup.

4.3CVSS4.4AI score0.00147EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.72 views

CVE-2021-30941

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.1, iOS 15.2 and iPadOS 15.2, macOS Big Sur 11.6.2, Security Update 2021-008 Catalina. Processing a maliciously crafted USD file may disclose memory contents.

5.5CVSS5.8AI score0.00305EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.71 views

CVE-2020-9962

A buffer overflow was addressed with improved size validation. This issue is fixed in macOS Big Sur 11.0.1, tvOS 14.0, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, watchOS 7.0, iOS 14.0 and iPadOS 14.0. Processing a maliciously crafted image may lead to ar...

7.8CVSS7.9AI score0.00766EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.71 views

CVE-2021-1756

A lock screen issue allowed access to contacts on a locked device. This issue was addressed with improved state management. This issue is fixed in iOS 14.4 and iPadOS 14.4. An attacker with physical access to a device may be able to see private contact information.

2.4CVSS3.2AI score0.00063EPSS
CVE
CVE
added 2021/09/08 3:15 p.m.71 views

CVE-2021-30706

Processing a maliciously crafted image may lead to disclosure of user information. This issue is fixed in macOS Big Sur 11.4, tvOS 14.6, watchOS 7.5, iOS 14.6 and iPadOS 14.6. This issue was addressed with improved checks.

5.5CVSS5.4AI score0.00269EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.71 views

CVE-2021-30874

An authorization issue was addressed with improved state management. This issue is fixed in iOS 15 and iPadOS 15. A VPN configuration may be installed by an app without user permission.

7.5CVSS6.8AI score0.00198EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.71 views

CVE-2021-30973

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Monterey 12.1, iOS 15.2 and iPadOS 15.2, macOS Big Sur 11.6.2, Security Update 2021-008 Catalina. Processing a maliciously crafted file may disclose user information.

5.5CVSS5.5AI score0.00264EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.71 views

CVE-2021-30993

A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2, tvOS 15.2. An attacker in a privileged network position may be able to execute arbitrary code.

8.1CVSS7.6AI score0.01668EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.70 views

CVE-2020-27908

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, watchOS 7.1, tvOS 14.2. Processing a maliciously crafted audio file may ...

7.8CVSS7.6AI score0.00482EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.70 views

CVE-2020-27944

A memory corruption issue existed in the processing of font files. This issue was addressed with improved input validation. This issue is fixed in watchOS 7.2, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, iOS 14.3 and iPadOS 14.3, tvOS 14.3. Processing a m...

7.8CVSS7.9AI score0.00461EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.70 views

CVE-2020-9975

A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.0.1, tvOS 14.0, macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, watchOS 7.0, iOS 14.0 and iPadOS 14.0. An application may be able to execute arbitrar...

9.3CVSS7.6AI score0.00522EPSS
CVE
CVE
added 2021/09/08 3:15 p.m.70 views

CVE-2021-1807

A validation issue was addressed with improved input sanitization. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4. A local user may be able to write arbitrary files.

5.5CVSS5.9AI score0.00054EPSS
CVE
CVE
added 2021/09/08 2:15 p.m.70 views

CVE-2021-30769

A logic issue was addressed with improved state management. This issue is fixed in iOS 14.7, tvOS 14.7, watchOS 7.6. A malicious attacker with arbitrary read and write capability may be able to bypass Pointer Authentication.

5.5CVSS5.7AI score0.001EPSS
CVE
CVE
added 2021/09/08 2:15 p.m.70 views

CVE-2021-30773

An issue in code signature validation was addressed with improved checks. This issue is fixed in iOS 14.7, tvOS 14.7, watchOS 7.6. A malicious application may be able to bypass code signing checks.

5.5CVSS5.8AI score0.00082EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.70 views

CVE-2021-30914

A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 15.1 and iPadOS 15.1. An application may be able to execute arbitrary code with kernel privileges.

9.3CVSS7.5AI score0.00265EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.70 views

CVE-2021-30929

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.1, iOS 15.2 and iPadOS 15.2, macOS Big Sur 11.6.2, Security Update 2021-008 Catalina. Processing a maliciously crafted USD file may disclose memory contents.

5.5CVSS5.6AI score0.00077EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.70 views

CVE-2021-30964

An inherited permissions issue was addressed with additional restrictions. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2. A malicious application may be able to bypass Privacy preferences.

5.5CVSS5.5AI score0.00178EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.70 views

CVE-2021-30968

A validation issue related to hard link behavior was addressed with improved sandbox restrictions. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. A malicious application may be able to bypass cer...

5.5CVSS5.5AI score0.0023EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.70 views

CVE-2021-30996

A race condition was addressed with improved state handling. This issue is fixed in macOS Monterey 12.1, iOS 15.2 and iPadOS 15.2. A malicious application may be able to execute arbitrary code with kernel privileges.

7.6CVSS7.1AI score0.00416EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.69 views

CVE-2020-27920

A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.1, Security Update 2020-001 Catalina, Security Update 2020-007 Mojave, macOS Big Sur 11.0.1, iOS 14.2 and iPadOS 14.2, watchOS 7.1, tvOS 14.2. Processing maliciously crafted web content may...

8.8CVSS7.6AI score0.00547EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.69 views

CVE-2021-30854

A logic issue was addressed with improved state management. This issue is fixed in tvOS 15, watchOS 8, iOS 15 and iPadOS 15. A sandboxed process may be able to circumvent sandbox restrictions.

8.6CVSS7.3AI score0.00283EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.69 views

CVE-2021-30966

A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2, tvOS 15.2. User traffic might unexpectedly be leaked to a proxy server despite PAC configurations.

7.5CVSS6.7AI score0.00471EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.68 views

CVE-2021-1763

A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted USD file may lead to unexpected application termination or arbitra...

9.3CVSS7.9AI score0.00322EPSS
CVE
CVE
added 2021/04/02 6:15 p.m.68 views

CVE-2021-1785

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted image may lead to arbitrary code exec...

7.8CVSS8AI score0.00402EPSS
CVE
CVE
added 2021/09/08 3:15 p.m.68 views

CVE-2021-1816

A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. A malicious application may be able to execute arbitrary code with kernel privileges.

9.3CVSS8.1AI score0.00404EPSS
CVE
CVE
added 2021/09/08 3:15 p.m.68 views

CVE-2021-1822

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. A local user may be able to modify protected parts of the file system.

5.5CVSS5.6AI score0.00056EPSS
CVE
CVE
added 2021/09/08 3:15 p.m.68 views

CVE-2021-1864

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. An attacker with JavaScript execution may be able to execute arbitrary code.

9.8CVSS8.3AI score0.01689EPSS
CVE
CVE
added 2021/09/08 2:15 p.m.68 views

CVE-2021-30764

Processing a maliciously crafted file may lead to arbitrary code execution. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. This issue was addressed with improved checks.

7.8CVSS8.1AI score0.00407EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.68 views

CVE-2021-30863

This issue was addressed by improving Face ID anti-spoofing models. This issue is fixed in iOS 15 and iPadOS 15. A 3D model constructed to look like the enrolled user may be able to authenticate via Face ID.

6.8CVSS6.2AI score0.00058EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.68 views

CVE-2021-30932

The issue was addressed with improved permissions logic. This issue is fixed in iOS 15.2 and iPadOS 15.2. A person with physical access to an iOS device may be able to access contacts from the lock screen.

4.6CVSS3.8AI score0.00048EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.68 views

CVE-2021-30991

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 15.2 and iPadOS 15.2. A malicious application may be able to execute arbitrary code with kernel privileges.

9.3CVSS7.5AI score0.00265EPSS
Total number of security vulnerabilities380