Vulnerabilities > Apple > Macos > 12.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-15 | CVE-2022-46695 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Apple products A spoofing issue existed in the handling of URLs. | 6.5 |
| 2022-12-15 | CVE-2022-46696 | Out-of-bounds Write vulnerability in Apple products A memory corruption issue was addressed with improved input validation. | 8.8 |
| 2022-12-15 | CVE-2022-46697 | Out-of-bounds Write vulnerability in Apple Macos An out-of-bounds access issue was addressed with improved bounds checking. | 7.8 |
| 2022-12-15 | CVE-2022-46698 | Unspecified vulnerability in Apple products A logic issue was addressed with improved checks. | 6.5 |
| 2022-12-15 | CVE-2022-46699 | Out-of-bounds Write vulnerability in Apple products A memory corruption issue was addressed with improved state management. | 8.8 |
| 2022-12-05 | CVE-2022-32221 | Exposure of Resource to Wrong Sphere vulnerability in multiple products When doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously was used to issue a `PUT` request which used that callback. | 9.8 |
| 2022-12-05 | CVE-2022-35260 | Out-of-bounds Write vulnerability in multiple products curl can be told to parse a `.netrc` file for credentials. | 6.5 |
| 2022-11-23 | CVE-2022-40304 | Double Free vulnerability in multiple products An issue was discovered in libxml2 before 2.10.3. | 7.8 |
| 2022-11-23 | CVE-2022-40303 | Integer Overflow or Wraparound vulnerability in multiple products An issue was discovered in libxml2 before 2.10.3. | 7.5 |
| 2022-11-13 | CVE-2022-3970 | A vulnerability was found in LibTIFF. | 8.8 |