Vulnerabilities > Apple > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-11-01 CVE-2022-42813 Improper Certificate Validation vulnerability in Apple products
A certificate validation issue existed in the handling of WKWebView.
network
low complexity
apple CWE-295
critical
9.8
2022-11-01 CVE-2022-42808 Out-of-bounds Write vulnerability in Apple products
An out-of-bounds write issue was addressed with improved bounds checking.
network
low complexity
apple CWE-787
critical
9.8
2022-11-01 CVE-2022-32941 Classic Buffer Overflow vulnerability in Apple Ipad OS, Iphone OS and Macos
The issue was addressed with improved bounds checks.
network
low complexity
apple CWE-120
critical
9.8
2022-09-23 CVE-2022-32847 Unspecified vulnerability in Apple products
This issue was addressed with improved checks.
network
low complexity
apple
critical
9.1
2022-08-24 CVE-2022-32839 Unspecified vulnerability in Apple products
The issue was addressed with improved bounds checks.
network
low complexity
apple
critical
9.8
2022-08-05 CVE-2022-37434 Out-of-bounds Write vulnerability in multiple products
zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field.
network
low complexity
zlib fedoraproject debian netapp apple CWE-787
critical
9.8
2022-07-07 CVE-2022-32207 Incorrect Default Permissions vulnerability in multiple products
When curl < 7.84.0 saves cookies, alt-svc and hsts data to local files, it makes the operation atomic by finalizing the operation with a rename from a temporary name to the final target file name.In that rename operation, it might accidentally *widen* the permissions for the target file, leaving the updated file accessible to more users than intended.
network
low complexity
haxx fedoraproject debian netapp apple CWE-276
critical
9.8
2022-06-25 CVE-2019-25071 Unspecified vulnerability in Apple Iphone OS
A vulnerability was found in Apple iPhone up to 12.4.1.
network
apple
critical
9.3
2022-05-26 CVE-2022-26772 Out-of-bounds Write vulnerability in Apple Macos
A memory corruption issue was addressed with improved state management.
network
apple CWE-787
critical
9.3
2022-05-26 CVE-2022-26771 Out-of-bounds Write vulnerability in Apple products
A memory corruption issue was addressed with improved state management.
network
apple CWE-787
critical
9.3