Vulnerabilities > Apple > Macos > 11.7.7
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-01 | CVE-2022-42829 | Use After Free vulnerability in Apple Macos A use after free issue was addressed with improved memory management. | 6.7 |
| 2022-11-01 | CVE-2022-42830 | Unspecified vulnerability in Apple Macos The issue was addressed with improved memory handling. | 6.7 |
| 2022-11-01 | CVE-2022-42831 | Race Condition vulnerability in Apple Macos A race condition was addressed with improved locking. | 6.4 |
| 2022-11-01 | CVE-2022-42832 | Race Condition vulnerability in Apple Macos A race condition was addressed with improved locking. | 6.4 |
| 2022-10-29 | CVE-2022-42916 | Cleartext Transmission of Sensitive Information vulnerability in multiple products In curl before 7.86.0, the HSTS check could be bypassed to trick it into staying with HTTP. | 7.5 |
| 2022-09-29 | CVE-2022-1725 | NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4959. | 5.5 |
| 2022-07-07 | CVE-2022-32205 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products A malicious server can serve excessive amounts of `Set-Cookie:` headers in a HTTP response to curl and curl < 7.84.0 stores all of them. | 4.3 |
| 2022-07-07 | CVE-2022-32207 | Incorrect Default Permissions vulnerability in multiple products When curl < 7.84.0 saves cookies, alt-svc and hsts data to local files, it makes the operation atomic by finalizing the operation with a rename from a temporary name to the final target file name.In that rename operation, it might accidentally *widen* the permissions for the target file, leaving the updated file accessible to more users than intended. | 9.8 |
| 2022-07-07 | CVE-2022-32208 | Out-of-bounds Write vulnerability in multiple products When curl < 7.84.0 does FTP transfers secured by krb5, it handles message verification failures wrongly. | 5.9 |
| 2022-06-02 | CVE-2022-1968 | Use After Free in GitHub repository vim/vim prior to 8.2. | 7.8 |