VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Apple
>
Macos
> 12.6
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2022-11-01
CVE-2022-42829
Use After Free vulnerability in Apple Macos
A use after free issue was addressed with improved memory management.
local
low complexity
apple
CWE-416
6.7
6.7
2022-11-01
CVE-2022-42830
Unspecified vulnerability in Apple Macos
The issue was addressed with improved memory handling.
local
low complexity
apple
6.7
6.7
2022-11-01
CVE-2022-42831
Race Condition vulnerability in Apple Macos
A race condition was addressed with improved locking.
local
high complexity
apple
CWE-362
6.4
6.4
2022-11-01
CVE-2022-42832
Race Condition vulnerability in Apple Macos
A race condition was addressed with improved locking.
local
high complexity
apple
CWE-362
6.4
6.4
2022-10-29
CVE-2022-42915
Double Free vulnerability in multiple products
curl before 7.86.0 has a double free.
network
high complexity
haxx
fedoraproject
netapp
apple
splunk
CWE-415
8.1
8.1
2022-10-29
CVE-2022-42916
Cleartext Transmission of Sensitive Information vulnerability in multiple products
In curl before 7.86.0, the HSTS check could be bypassed to trick it into staying with HTTP.
network
low complexity
haxx
fedoraproject
apple
splunk
CWE-319
7.5
7.5
2022-09-29
CVE-2022-1725
NULL Pointer Dereference in GitHub repository vim/vim prior to 8.2.4959.
local
low complexity
vim
apple
5.5
5.5
2022-09-23
CVE-2022-35252
When curl is used to retrieve and parse cookies from a HTTP(S) server, itaccepts cookies using control codes that when later are sent back to a HTTPserver might make the server return 400 responses.
network
high complexity
haxx
netapp
apple
debian
splunk
3.7
3.7
2022-08-05
CVE-2022-37434
Out-of-bounds Write vulnerability in multiple products
zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field.
network
low complexity
zlib
fedoraproject
debian
netapp
apple
stormshield
CWE-787
critical
9.8
9.8
2022-07-07
CVE-2022-32205
Allocation of Resources Without Limits or Throttling vulnerability in multiple products
A malicious server can serve excessive amounts of `Set-Cookie:` headers in a HTTP response to curl and curl < 7.84.0 stores all of them.
network
low complexity
haxx
fedoraproject
debian
netapp
apple
siemens
splunk
CWE-770
4.3
4.3
«
Previous
1
2
...
76
77
78
(current)
79
80
...
81
82
»
Next