Vulnerabilities > Apple > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-12-18 | CVE-2019-7289 | Path Traversal vulnerability in Apple Shortcuts A parsing issue in the handling of directory paths was addressed with improved path validation. | 5.5 |
| 2019-12-18 | CVE-2019-7284 | Unspecified vulnerability in Apple Iphone OS This issue was addressed with improved checks. | 4.3 |
| 2019-12-18 | CVE-2019-6222 | Unspecified vulnerability in Apple Iphone OS A consistency issue was addressed with improved state handling. | 4.3 |
| 2019-12-18 | CVE-2019-6207 | Out-of-bounds Read vulnerability in Apple products An out-of-bounds read issue existed that led to the disclosure of kernel memory. | 5.5 |
| 2019-12-18 | CVE-2019-6204 | Cross-site Scripting vulnerability in Apple Iphone OS A logic issue was addressed with improved validation. | 6.1 |
| 2019-11-22 | CVE-2019-9536 | Improper Handling of Exceptional Conditions vulnerability in Apple Iphone 3GS Apple iPhone 3GS bootrom malloc implementation returns a non-NULL pointer when unable to allocate memory, aka 'alloc8'. | 6.8 |
| 2019-10-03 | CVE-2019-15165 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products sf-pcapng.c in libpcap before 1.9.1 does not properly validate the PHB header length before allocating memory. | 5.3 |
| 2019-08-13 | CVE-2019-9516 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. | 6.5 |
| 2019-07-26 | CVE-2019-13057 | An issue was discovered in the server in OpenLDAP before 2.4.48. | 4.9 |
| 2019-07-01 | CVE-2019-13118 | Type Confusion vulnerability in multiple products In numbers.c in libxslt 1.1.33, a type holding grouping characters of an xsl:number instruction was too narrow and an invalid character/length combination could be passed to xsltNumberFormatDecimal, leading to a read of uninitialized stack data. | 5.3 |