Vulnerabilities > Apple > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-06-09 CVE-2020-9792 Improper Input Validation vulnerability in Apple mac OS X
A validation issue was addressed with improved input sanitization.
low complexity
apple CWE-20
4.6
4.6
2020-06-09 CVE-2020-3882 Information Exposure vulnerability in Apple mac OS X
This issue was addressed with improved checks.
network
apple CWE-200
4.3
4.3
2020-05-28 CVE-2019-20807 OS Command Injection vulnerability in multiple products
In Vim before 8.1.0881, users can circumvent the rvim restricted mode and execute arbitrary OS commands via scripting interfaces (e.g., Python, Ruby, or Lua). 		4.6
4.6
2020-05-27 CVE-2020-13631 SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c. 5.5
5.5
2020-05-24 CVE-2020-13434 Integer Overflow or Wraparound vulnerability in multiple products
SQLite through 3.32.0 has an integer overflow in sqlite3_str_vappendf in printf.c. 		5.5
5.5
2020-05-11 CVE-2020-9840 Unspecified vulnerability in Apple Nioextras
In SwiftNIO Extras before 1.4.1, a logic issue was addressed with improved restrictions.
network
low complexity
apple
5.0
5.0
2020-05-08 CVE-2020-6616 Some Broadcom chips mishandle Bluetooth random-number generation because a low-entropy Pseudo Random Number Generator (PRNG) is used in situations where a Hardware Random Number Generator (HRNG) should have been used to prevent spoofing.
low complexity
google apple
6.5
6.5
2020-04-28 CVE-2020-12243 Uncontrolled Recursion vulnerability in multiple products
In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean expressions can result in denial of service (daemon crash). 		5.0
5.0
2020-04-14 CVE-2020-11765 Off-by-one Error vulnerability in multiple products
An issue was discovered in OpenEXR before 2.4.1. 		5.5
5.5
2020-04-14 CVE-2020-11764 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in OpenEXR before 2.4.1. 		5.5
5.5