Vulnerabilities > Apple > Macos > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-11 | CVE-2022-1622 | Out-of-bounds Read vulnerability in multiple products LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:619, allowing attackers to cause a denial-of-service via a crafted tiff file. | 5.5 |
| 2022-04-21 | CVE-2022-1420 | Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4774. | 5.5 |
| 2022-04-12 | CVE-2022-29046 | Cross-site Scripting vulnerability in multiple products Jenkins Subversion Plugin 2.15.3 and earlier does not escape the name and description of List Subversion tags (and more) parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission. | 5.4 |
| 2022-04-12 | CVE-2022-29048 | Cross-Site Request Forgery (CSRF) vulnerability in multiple products A cross-site request forgery (CSRF) vulnerability in Jenkins Subversion Plugin 2.15.3 and earlier allows attackers to connect to an attacker-specified URL. | 4.3 |
| 2022-04-12 | CVE-2021-28544 | Apache Subversion SVN authz protected copyfrom paths regression Subversion servers reveal 'copyfrom' paths that should be hidden according to configured path-based authorization (authz) rules. | 4.3 |
| 2022-03-18 | CVE-2022-22583 | Unspecified vulnerability in Apple mac OS X and Macos A permissions issue was addressed with improved validation. | 5.5 |
| 2022-03-18 | CVE-2022-22589 | Unspecified vulnerability in Apple products A validation issue was addressed with improved input sanitization. | 6.1 |
| 2022-03-18 | CVE-2022-22592 | Unspecified vulnerability in Apple products A logic issue was addressed with improved state management. | 6.5 |
| 2022-03-18 | CVE-2022-22594 | Origin Validation Error vulnerability in Apple products A cross-origin issue in the IndexDB API was addressed with improved input validation. | 6.5 |
| 2022-03-18 | CVE-2022-22600 | Unspecified vulnerability in Apple products The issue was addressed with improved permissions logic. | 5.5 |