Vulnerabilities > Apple > Macos > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-03-18 CVE-2022-22587 Out-of-bounds Write vulnerability in Apple Iphone OS and Macos
A memory corruption issue was addressed with improved input validation.
network
low complexity
apple CWE-787
critical
9.8
2022-03-18 CVE-2022-22586 Out-of-bounds Write vulnerability in Apple Macos
An out-of-bounds write issue was addressed with improved bounds checking.
network
low complexity
apple CWE-787
critical
9.8
2022-03-14 CVE-2022-22721 Integer Overflow or Wraparound vulnerability in multiple products
If LimitXMLRequestBody is set to allow request bodies larger than 350MB (defaults to 1M) on 32 bit systems an integer overflow happens which later causes out of bounds writes.
network
low complexity
apache fedoraproject debian oracle apple CWE-190
critical
9.1
2022-03-14 CVE-2022-22720 HTTP Request Smuggling vulnerability in multiple products
Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling
network
low complexity
apache fedoraproject debian oracle apple CWE-444
critical
9.8
2022-01-21 CVE-2022-0318 Out-of-bounds Write vulnerability in multiple products
Heap-based Buffer Overflow in vim/vim prior to 8.2.
network
low complexity
vim apple debian CWE-787
critical
9.8
2021-12-20 CVE-2021-44790 A carefully crafted request body can cause a buffer overflow in the mod_lua multipart parser (r:parsebody() called from Lua scripts).
network
low complexity
apache fedoraproject debian tenable netapp oracle apple
critical
9.8
2021-09-23 CVE-2021-22945 Double Free vulnerability in multiple products
When sending data to an MQTT server, libcurl <= 7.73.0 and 7.78.0 could in some circumstances erroneously keep a pointer to an already freed memory area and both use that again in a subsequent call to send data and also free it *again*.
network
low complexity
haxx fedoraproject netapp oracle apple siemens debian splunk CWE-415
critical
9.1
2021-09-08 CVE-2021-30678 Unspecified vulnerability in Apple mac OS X and Macos
A logic issue was addressed with improved state management.
network
low complexity
apple
critical
9.8
2021-09-08 CVE-2021-30655 Unspecified vulnerability in Apple mac OS X and Macos
An application may be able to execute arbitrary code with system privileges.
network
low complexity
apple
critical
9.8
2021-09-08 CVE-2021-1882 Out-of-bounds Write vulnerability in Apple products
A memory corruption issue was addressed with improved validation.
network
low complexity
apple CWE-787
critical
9.8