Lucene search

K
AppleMacos

2687 matches found

CVE
CVE
added 2022/05/26 8:15 p.m.143 views

CVE-2022-26745

A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.6.6. A malicious application may disclose restricted memory.

5.5CVSS6.3AI score0.00266EPSS
CVE
CVE
added 2022/05/26 8:15 p.m.143 views

CVE-2022-26770

An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in Security Update 2022-004 Catalina, macOS Monterey 12.4, macOS Big Sur 11.6.6. A malicious application may be able to execute arbitrary code with kernel privileges.

9.3CVSS7.9AI score0.00266EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.142 views

CVE-2021-30955

A race condition was addressed with improved state handling. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2, tvOS 15.2. A malicious application may be able to execute arbitrary code with kernel privileges.

7.6CVSS7.1AI score0.35658EPSS
CVE
CVE
added 2022/05/12 11:15 a.m.142 views

CVE-2022-1674

NULL Pointer Dereference in function vim_regexec_string at regexp.c:2733 in GitHub repository vim/vim prior to 8.2.4938. NULL Pointer Dereference in function vim_regexec_string at regexp.c:2733 allows attackers to cause a denial of service (application crash) via a crafted input.

6.6CVSS6.1AI score0.00113EPSS
CVE
CVE
added 2022/05/27 9:15 a.m.141 views

CVE-2022-1898

Use After Free in GitHub repository vim/vim prior to 8.2.

7.8CVSS7.8AI score0.0015EPSS
CVE
CVE
added 2022/11/01 8:15 p.m.141 views

CVE-2022-26719

A memory corruption issue was addressed with improved state management. This issue is fixed in tvOS 15.5, iOS 15.5 and iPadOS 15.5, watchOS 8.6, macOS Monterey 12.4, Safari 15.5. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS8.6AI score0.00137EPSS
CVE
CVE
added 2022/05/26 7:15 p.m.141 views

CVE-2022-26727

This issue was addressed with improved entitlements. This issue is fixed in Security Update 2022-004 Catalina, macOS Monterey 12.4. A malicious application may be able to modify protected parts of the file system.

5.5CVSS5.9AI score0.00169EPSS
CVE
CVE
added 2019/01/11 6:29 p.m.140 views

CVE-2018-4404

In iOS before 11.4 and macOS High Sierra before 10.13.5, a memory corruption issue exists and was addressed with improved memory handling.

9.3CVSS6.6AI score0.70102EPSS
CVE
CVE
added 2022/11/01 8:15 p.m.140 views

CVE-2022-22677

A logic issue in the handling of concurrent media was addressed with improved state handling. This issue is fixed in macOS Monterey 12.4, iOS 15.5 and iPadOS 15.5. Video self-preview in a webRTC call may be interrupted if the user answers a phone call.

4.3CVSS4.8AI score0.00116EPSS
CVE
CVE
added 2022/12/15 7:15 p.m.140 views

CVE-2022-42863

A memory corruption issue was addressed with improved state management. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS8.6AI score0.00789EPSS
CVE
CVE
added 2022/09/23 7:15 p.m.139 views

CVE-2022-32832

The issue was addressed with improved memory handling. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Big Sur 11.6.8, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Security Update 2022-005 Catalina. An app with root privileges may be able to execute arbitrary code with kernel privileges.

6.7CVSS7.3AI score0.03849EPSS
CVE
CVE
added 2020/12/08 9:15 p.m.138 views

CVE-2020-27904

A logic issue existed resulting in memory corruption. This was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1. An application may be able to execute arbitrary code with kernel privileges.

9.3CVSS7.3AI score0.11475EPSS
CVE
CVE
added 2021/08/24 7:15 p.m.138 views

CVE-2021-30897

An issue existed in the specification for the resource timing API. The specification was updated and the updated specification was implemented. This issue is fixed in macOS Monterey 12.0.1. A malicious website may exfiltrate data cross-origin.

6.5CVSS7.1AI score0.00254EPSS
CVE
CVE
added 2022/04/21 11:15 a.m.138 views

CVE-2022-1420

Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4774.

6.8CVSS6.5AI score0.00055EPSS
CVE
CVE
added 2022/05/25 1:15 p.m.138 views

CVE-2022-1851

Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.

7.8CVSS7.7AI score0.00163EPSS
CVE
CVE
added 2023/02/27 8:15 p.m.138 views

CVE-2022-46705

A spoofing issue existed in the handling of URLs. This issue was addressed with improved input validation. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, Safari 16.2. Visiting a malicious website may lead to address bar spoofing.

4.3CVSS3.5AI score0.00178EPSS
CVE
CVE
added 2022/05/17 7:15 p.m.137 views

CVE-2022-1735

Classic Buffer Overflow in GitHub repository vim/vim prior to 8.2.4969.

7.8CVSS7AI score0.00184EPSS
CVE
CVE
added 2020/02/27 9:15 p.m.136 views

CVE-2020-3878

An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 13.5 and iPadOS 13.5, macOS Catalina 10.15.5, tvOS 13.4.5, watchOS 6.2.5, iTunes 12.10.7 for Windows, iCloud for Windows 11.2, iCloud for Windows 7.19. Processing a maliciously crafted image may lead to a...

7.8CVSS7.7AI score0.00715EPSS
CVE
CVE
added 2022/09/23 7:15 p.m.136 views

CVE-2022-32792

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, watchOS 8.7, tvOS 15.6, macOS Monterey 12.5, Safari 15.6. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS8.5AI score0.00298EPSS
CVE
CVE
added 2023/09/06 2:15 a.m.136 views

CVE-2023-32370

A logic issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3. Content Security Policy to block domains with wildcards may fail.

5.3CVSS5.8AI score0.0003EPSS
CVE
CVE
added 2022/06/20 3:15 p.m.135 views

CVE-2022-1720

Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior to 8.2.4956. This vulnerability is capable of crashing the software, memory modification, and possible remote execution.

7.8CVSS7AI score0.00353EPSS
CVE
CVE
added 2022/03/18 6:15 p.m.135 views

CVE-2022-22611

An out-of-bounds read was addressed with improved input validation. This issue is fixed in tvOS 15.4, iOS 15.4 and iPadOS 15.4, iTunes 12.12.3 for Windows, watchOS 8.5, macOS Monterey 12.3. Processing a maliciously crafted image may lead to arbitrary code execution.

7.8CVSS7.8AI score0.00593EPSS
CVE
CVE
added 2022/03/18 6:15 p.m.135 views

CVE-2022-22633

A memory corruption issue was addressed with improved state management. This issue is fixed in watchOS 8.5, iOS 15.4 and iPadOS 15.4, macOS Big Sur 11.6.5, macOS Monterey 12.3. Opening a maliciously crafted PDF file may lead to an unexpected application termination or arbitrary code execution.

9.3CVSS8.3AI score0.00349EPSS
CVE
CVE
added 2023/02/27 8:15 p.m.135 views

CVE-2022-42826

A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13, iOS 16.1 and iPadOS 16, Safari 16.1. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS8.4AI score0.00083EPSS
CVE
CVE
added 2022/12/15 7:15 p.m.134 views

CVE-2022-46691

A memory consumption issue was addressed with improved memory handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS8.3AI score0.00573EPSS
CVE
CVE
added 2020/12/08 8:15 p.m.133 views

CVE-2020-9942

An inconsistent user interface issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, Safari 13.1.2. Visiting a malicious website may lead to address bar spoofing.

4.3CVSS4.9AI score0.00247EPSS
CVE
CVE
added 2023/12/12 1:15 a.m.133 views

CVE-2023-40446

The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.7.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. Processing maliciously crafted input may lead to arbitrary code execution in user-installed apps.

7.8CVSS7.2AI score0.00055EPSS
CVE
CVE
added 2022/01/10 4:15 p.m.132 views

CVE-2022-0158

vim is vulnerable to Heap-based Buffer Overflow

6.8CVSS5.4AI score0.00131EPSS
CVE
CVE
added 2020/02/27 9:15 p.m.131 views

CVE-2020-3829

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to gain elevated privileges.

9.3CVSS7AI score0.00299EPSS
CVE
CVE
added 2025/01/27 10:15 p.m.130 views

CVE-2025-24118

The issue was addressed with improved memory handling. This issue is fixed in iPadOS 17.7.4, macOS Sequoia 15.3, macOS Sonoma 14.7.3. An app may be able to cause unexpected system termination or write kernel memory.

9.8CVSS6AI score0.06447EPSS
CVE
CVE
added 2025/01/27 10:15 p.m.130 views

CVE-2025-24162

This issue was addressed through improved state management. This issue is fixed in visionOS 2.3, Safari 18.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. Processing maliciously crafted web content may lead to an unexpected process crash.

6.5CVSS6AI score0.00179EPSS
CVE
CVE
added 2022/09/20 9:15 p.m.129 views

CVE-2022-32854

This issue was addressed with improved checks. This issue is fixed in iOS 15.7 and iPadOS 15.7, iOS 16, macOS Big Sur 11.7. An app may be able to bypass Privacy preferences.

5.5CVSS5.4AI score0.00007EPSS
CVE
CVE
added 2025/01/27 10:15 p.m.129 views

CVE-2025-24163

The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. Parsing a file may lead to an unexpected app termination.

5.5CVSS5.7AI score0.00022EPSS
CVE
CVE
added 2022/09/20 9:15 p.m.128 views

CVE-2022-32788

A buffer overflow was addressed with improved bounds checking. This issue is fixed in watchOS 8.7, tvOS 15.6, iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. A remote user may be able to cause kernel code execution.

9.8CVSS8.4AI score0.00721EPSS
CVE
CVE
added 2022/11/01 8:15 p.m.128 views

CVE-2022-42825

This issue was addressed by removing additional entitlements. This issue is fixed in tvOS 16.1, macOS Ventura 13, watchOS 9.1, iOS 16.1 and iPadOS 16, macOS Monterey 12.6.1, macOS Big Sur 11.7.1. An app may be able to modify protected parts of the file system.

5.5CVSS6AI score0.00017EPSS
CVE
CVE
added 2022/06/19 1:15 p.m.127 views

CVE-2022-2126

Out-of-bounds Read in GitHub repository vim/vim prior to 8.2.

7.8CVSS7.8AI score0.00077EPSS
CVE
CVE
added 2022/05/26 7:15 p.m.127 views

CVE-2022-26726

This issue was addressed with improved checks. This issue is fixed in Security Update 2022-004 Catalina, watchOS 8.6, macOS Monterey 12.4, macOS Big Sur 11.6.6. An app may be able to capture a user's screen.

6.5CVSS6.5AI score0.11271EPSS
CVE
CVE
added 2022/11/01 8:15 p.m.127 views

CVE-2022-42803

A race condition was addressed with improved locking. This issue is fixed in tvOS 16.1, iOS 15.7.1 and iPadOS 15.7.1, macOS Ventura 13, watchOS 9.1, iOS 16.1 and iPadOS 16, macOS Monterey 12.6.1. An app may be able to execute arbitrary code with kernel privileges.

7CVSS7.4AI score0.00078EPSS
CVE
CVE
added 2023/02/27 8:15 p.m.127 views

CVE-2023-23503

A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3, iOS 15.7.3 and iPadOS 15.7.3, tvOS 16.3, watchOS 9.3. An app may be able to bypass Privacy preferences.

5.5CVSS4.3AI score0.00015EPSS
CVE
CVE
added 2025/05/12 10:15 p.m.127 views

CVE-2025-31258

This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sequoia 15.5. An app may be able to break out of its sandbox.

6.5CVSS6.2AI score0.00015EPSS
CVE
CVE
added 2022/05/11 3:15 p.m.126 views

CVE-2022-1622

LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:619, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit b4e79bfa.

5.5CVSS5.6AI score0.00064EPSS
CVE
CVE
added 2020/02/27 9:15 p.m.125 views

CVE-2020-3840

An off by one issue existed in the handling of racoon configuration files. This issue was addressed through improved bounds checking. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1. Loading a maliciously crafted racoon configuration file may lead to arbitra...

7.8CVSS7.4AI score0.00469EPSS
CVE
CVE
added 2019/12/18 6:15 p.m.124 views

CVE-2019-8662

This issue was addressed with improved checks. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3. An attacker may be able to trigger a use-after-free in an application deserializing an untrusted NSDictionary.

9.8CVSS7.2AI score0.14427EPSS
CVE
CVE
added 2021/09/08 2:15 p.m.124 views

CVE-2021-30721

A path handling issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. An attacker in a privileged network position may be able to leak sensitive user information.

6.5CVSS6.3AI score0.00501EPSS
CVE
CVE
added 2022/03/18 6:15 p.m.124 views

CVE-2022-22665

A logic issue was addressed with improved validation. This issue is fixed in macOS Monterey 12.3. A malicious application may be able to gain root privileges.

9.3CVSS7.5AI score0.0035EPSS
CVE
CVE
added 2022/11/01 8:15 p.m.124 views

CVE-2022-26710

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 15.5 and iPadOS 15.5, macOS Monterey 12.4, tvOS 15.5, watchOS 8.6. Processing maliciously crafted web content may lead to arbitrary code execution.

8.8CVSS8.5AI score0.00186EPSS
CVE
CVE
added 2023/02/27 8:15 p.m.124 views

CVE-2023-23500

The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3, iOS 15.7.3 and iPadOS 15.7.3, tvOS 16.3, watchOS 9.3. An app may be able to leak sensitive kernel state.

5.5CVSS4.1AI score0.00054EPSS
CVE
CVE
added 2019/03/05 4:29 p.m.123 views

CVE-2019-6225

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2. A malicious application may be able to elevate privileges.

7.8CVSS6.7AI score0.82754EPSS
CVE
CVE
added 2020/06/09 5:15 p.m.123 views

CVE-2020-9856

This issue was addressed with improved checks. This issue is fixed in macOS Catalina 10.15.5. An application may be able to gain elevated privileges.

5.3CVSS5.4AI score0.18924EPSS
CVE
CVE
added 2022/03/18 6:15 p.m.123 views

CVE-2022-22617

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.6.5, macOS Monterey 12.3, Security Update 2022-003 Catalina. An application may be able to gain elevated privileges.

7.8CVSS7.6AI score0.00102EPSS
Total number of security vulnerabilities2687