12.3.1

DATE	CVE	VULNERABILITY TITLE	RISK
2022-09-20	CVE-2022-32917	Out-of-bounds Write vulnerability in Apple Ipados and Iphone OS The issue was addressed with improved bounds checks. local low complexity apple CWE-787	7.8
2022-08-24	CVE-2022-32893	Out-of-bounds Write vulnerability in multiple products An out-of-bounds write issue was addressed with improved bounds checking. network low complexity apple fedoraproject debian webkitgtk wpewebkit CWE-787	8.8
2022-08-24	CVE-2022-32894	Out-of-bounds Write vulnerability in Apple products An out-of-bounds write issue was addressed with improved bounds checking. local low complexity apple CWE-787	7.8
2022-07-28	CVE-2022-2294	Out-of-bounds Write vulnerability in multiple products Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. network low complexity google fedoraproject webkitgtk wpewebkit apple webrtc-project CWE-787	8.8
2022-07-07	CVE-2022-32207	Incorrect Default Permissions vulnerability in multiple products When curl < 7.84.0 saves cookies, alt-svc and hsts data to local files, it makes the operation atomic by finalizing the operation with a rename from a temporary name to the final target file name.In that rename operation, it might accidentally widen the permissions for the target file, leaving the updated file accessible to more users than intended. network low complexity haxx fedoraproject debian netapp apple splunk CWE-276 critical	9.8
2022-03-25	CVE-2018-25032	Out-of-bounds Write vulnerability in multiple products zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches. network low complexity nokogiri zlib debian fedoraproject apple python mariadb netapp siemens azul goto CWE-787	7.5