Vulnerabilities > Apple > MAC OS X

DATE CVE VULNERABILITY TITLE RISK
2022-03-14 CVE-2022-22720 HTTP Request Smuggling vulnerability in multiple products
Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling
network
low complexity
apache fedoraproject debian oracle apple CWE-444
critical
9.8
2022-03-14 CVE-2022-22721 Integer Overflow or Wraparound vulnerability in multiple products
If LimitXMLRequestBody is set to allow request bodies larger than 350MB (defaults to 1M) on 32 bit systems an integer overflow happens which later causes out of bounds writes.
network
low complexity
apache fedoraproject debian oracle apple CWE-190
critical
9.1
2022-02-26 CVE-2022-23308 Use After Free vulnerability in multiple products
valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes.
7.5
2022-02-14 CVE-2021-45444 In zsh before 5.8.1, an attacker can achieve code execution if they control a command output inside the prompt, as demonstrated by a %F argument.
local
low complexity
zsh fedoraproject debian apple
7.8
2022-02-09 CVE-2022-0530 A flaw was found in Unzip. 5.5
2022-01-18 CVE-2022-0261 Out-of-bounds Write vulnerability in multiple products
Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.
local
low complexity
vim debian apple CWE-787
7.8
2022-01-06 CVE-2022-0128 vim is vulnerable to Out-of-bounds Read
local
low complexity
vim apple
7.8
2021-12-31 CVE-2021-4193 vim is vulnerable to Out-of-bounds Read
local
low complexity
vim fedoraproject debian apple
5.5
2021-12-31 CVE-2021-4192 vim is vulnerable to Use After Free
local
low complexity
vim fedoraproject debian apple
7.8
2021-12-29 CVE-2021-4187 vim is vulnerable to Use After Free
local
low complexity
vim fedoraproject apple
7.8