Vulnerabilities > Apple > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-11 | CVE-2022-1622 | Out-of-bounds Read vulnerability in multiple products LibTIFF master branch has an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c:619, allowing attackers to cause a denial-of-service via a crafted tiff file. | 5.5 |
| 2022-04-21 | CVE-2022-1420 | Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior to 8.2.4774. | 5.5 |
| 2022-04-12 | CVE-2022-29046 | Cross-site Scripting vulnerability in multiple products Jenkins Subversion Plugin 2.15.3 and earlier does not escape the name and description of List Subversion tags (and more) parameters on views displaying parameters, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Item/Configure permission. | 5.4 |
| 2022-04-12 | CVE-2022-29048 | Cross-Site Request Forgery (CSRF) vulnerability in multiple products A cross-site request forgery (CSRF) vulnerability in Jenkins Subversion Plugin 2.15.3 and earlier allows attackers to connect to an attacker-specified URL. | 4.3 |
| 2022-04-12 | CVE-2021-28544 | Apache Subversion SVN authz protected copyfrom paths regression Subversion servers reveal 'copyfrom' paths that should be hidden according to configured path-based authorization (authz) rules. | 4.3 |
| 2022-03-23 | CVE-2020-20095 | Unspecified vulnerability in Apple Imessage iMessage (Messages app) iOS 12.4 and prior user interface does not properly represent URI messages to the user, which results in URI spoofing via specially crafted messages. | 6.5 |
| 2022-03-18 | CVE-2022-22583 | Unspecified vulnerability in Apple mac OS X and Macos A permissions issue was addressed with improved validation. | 5.5 |
| 2022-03-18 | CVE-2022-22588 | Improper Input Validation vulnerability in Apple Iphone OS A resource exhaustion issue was addressed with improved input validation. | 5.5 |
| 2022-03-18 | CVE-2022-22589 | Unspecified vulnerability in Apple products A validation issue was addressed with improved input sanitization. | 6.1 |
| 2022-03-18 | CVE-2022-22592 | Unspecified vulnerability in Apple products A logic issue was addressed with improved state management. | 6.5 |