Vulnerabilities > Apple > Macos > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-29 | CVE-2021-22947 | Insufficient Verification of Data Authenticity vulnerability in multiple products When curl >= 7.20.0 and <= 7.78.0 connects to an IMAP or POP3 server to retrieve data using STARTTLS to upgrade to TLS security, the server can respond and send back multiple responses at once that curl caches. | 5.9 |
| 2021-09-08 | CVE-2021-1739 | Path Traversal vulnerability in Apple products A parsing issue in the handling of directory paths was addressed with improved path validation. | 5.5 |
| 2021-09-08 | CVE-2021-1740 | Path Traversal vulnerability in Apple products A parsing issue in the handling of directory paths was addressed with improved path validation. | 5.5 |
| 2021-09-08 | CVE-2021-1810 | Unspecified vulnerability in Apple mac OS X and Macos A logic issue was addressed with improved state management. | 5.5 |
| 2021-09-08 | CVE-2021-1811 | Unspecified vulnerability in Apple products A logic issue was addressed with improved state management. | 6.5 |
| 2021-09-08 | CVE-2021-1815 | Path Traversal vulnerability in Apple products A parsing issue in the handling of directory paths was addressed with improved path validation. | 5.5 |
| 2021-09-08 | CVE-2021-1820 | Improper Initialization vulnerability in Apple products A memory initialization issue was addressed with improved memory handling. | 6.5 |
| 2021-09-08 | CVE-2021-1824 | Unspecified vulnerability in Apple mac OS X and Macos This issue was addressed with improved entitlements. | 4.4 |
| 2021-09-08 | CVE-2021-1825 | Cross-site Scripting vulnerability in Apple products An input validation issue was addressed with improved input validation. | 6.1 |
| 2021-09-08 | CVE-2021-1826 | Cross-site Scripting vulnerability in Apple products A logic issue was addressed with improved restrictions. | 6.1 |