15.4.1

DATE	CVE	VULNERABILITY TITLE	RISK
2022-07-28	CVE-2022-2294	Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject webkitgtk wpewebkit apple webrtc-project CWE-787	8.8
2022-05-26	CVE-2022-26763	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products An out-of-bounds access issue was addressed with improved bounds checking. local low complexity apple CWE-119	7.8
2022-05-26	CVE-2022-26764	Out-of-bounds Write vulnerability in Apple products A memory corruption issue was addressed with improved validation. local high complexity apple CWE-787	4.7
2022-05-26	CVE-2022-26765	Race Condition vulnerability in Apple products A race condition was addressed with improved state handling. local high complexity apple CWE-362	4.7
2022-05-26	CVE-2022-26766	Improper Certificate Validation vulnerability in Apple products A certificate parsing issue was addressed with improved checks. local low complexity apple CWE-295	5.5
2022-05-26	CVE-2022-26768	Out-of-bounds Write vulnerability in Apple products A memory corruption issue was addressed with improved state management. local low complexity apple CWE-787	7.8
2022-05-26	CVE-2022-26771	Out-of-bounds Write vulnerability in Apple products A memory corruption issue was addressed with improved state management. local low complexity apple CWE-787	7.8
2022-02-26	CVE-2022-23308	Use After Free vulnerability in multiple products valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes. network low complexity xmlsoft fedoraproject debian apple netapp oracle CWE-416	7.5