Latest CVE Feed
-
5.5
MEDIUMCVE-2016-1865
The kernel in Apple iOS before 9.3.3, OS X before 10.11.6, tvOS before 9.2.2, and watchOS before 2.2.2 allows local users to cause a denial of service (NULL pointer dereference) via unspecified vectors.... Read more
- Published: Jul. 22, 2016
- Modified: Apr. 12, 2025
-
5.5
MEDIUM- Published: Aug. 29, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2016-1898
FFmpeg 2.x allows remote attackers to conduct cross-origin attacks and read arbitrary files by using the subfile protocol in an HTTP Live Streaming (HLS) M3U8 file, leading to an external HTTP request in which the URL string contains an arbitrary line of ... Read more
- Published: Jan. 15, 2016
- Modified: Apr. 12, 2025
-
5.5
MEDIUMCVE-2016-1837
Multiple use-after-free vulnerabilities in the (1) htmlPArsePubidLiteral and (2) htmlParseSystemiteral functions in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allow remote att... Read more
- Published: May. 20, 2016
- Modified: Apr. 12, 2025
-
5.5
MEDIUMCVE-2016-1814
IOAcceleratorFamily in Apple iOS before 9.3.2, OS X before 10.11.5, and tvOS before 9.2.1 allows attackers to cause a denial of service (NULL pointer dereference) via a crafted app.... Read more
- Published: May. 20, 2016
- Modified: Apr. 12, 2025
-
5.5
MEDIUMCVE-2016-1833
The htmlCurrentChar function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML... Read more
- Published: May. 20, 2016
- Modified: Apr. 12, 2025
-
5.5
MEDIUMCVE-2022-3266
An out-of-bounds read can occur when decoding H264 video. This results in a potentially exploitable crash. This vulnerability affects Firefox ESR < 102.3, Thunderbird < 102.3, and Firefox < 105.... Read more
- Published: Dec. 22, 2022
- Modified: Apr. 15, 2025
-
5.5
MEDIUMCVE-2016-1839
The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XM... Read more
- Published: May. 20, 2016
- Modified: Apr. 12, 2025
-
5.5
MEDIUMCVE-2016-1745
IOFireWireFamily in Apple OS X before 10.11.4 allows local users to cause a denial of service (NULL pointer dereference) via unspecified vectors.... Read more
- Published: Mar. 24, 2016
- Modified: Apr. 12, 2025
-
5.5
MEDIUMCVE-2016-1732
AppleRAID in Apple OS X before 10.11.4 allows local users to obtain sensitive kernel memory-layout information or cause a denial of service (out-of-bounds read) via unspecified vectors.... Read more
- Published: Mar. 24, 2016
- Modified: Apr. 12, 2025
-
5.5
MEDIUMCVE-2024-3108
An implicit intent vulnerability was reported for Motorola’s Time Weather Widget application that could allow a local application to acquire the location of the device without authorization. ... Read more
Affected Products :- Published: May. 03, 2024
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2024-44197
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. A malicious app may be able to cause a denial-of-service.... Read more
Affected Products : macos- Published: Oct. 28, 2024
- Modified: Nov. 14, 2024
-
5.5
MEDIUMCVE-2022-30159
Microsoft Office Information Disclosure Vulnerability... Read more
- Published: Jun. 15, 2022
- Modified: Jan. 02, 2025
-
5.5
MEDIUMCVE-2024-44201
The issue was addressed with improved memory handling. This issue is fixed in iPadOS 17.7.3, macOS Ventura 13.7.2, iOS 18.1 and iPadOS 18.1, macOS Sonoma 14.7.2. Processing a malicious crafted file may lead to a denial-of-service.... Read more
- Published: Dec. 12, 2024
- Modified: Dec. 13, 2024
-
5.5
MEDIUMCVE-2024-44198
An integer overflow was addressed through improved input validation. This issue is fixed in visionOS 2, watchOS 11, macOS Sequoia 15, iOS 18 and iPadOS 18, tvOS 18. Processing maliciously crafted web content may lead to an unexpected process crash.... Read more
- Published: Sep. 17, 2024
- Modified: Mar. 25, 2025
-
5.5
MEDIUMCVE-2024-44188
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access protected user data.... Read more
Affected Products : macos- Published: Sep. 17, 2024
- Modified: Mar. 19, 2025
-
5.5
MEDIUMCVE-2022-24823
Netty is an open-source, asynchronous event-driven network application framework. The package `io.netty:netty-codec-http` prior to version 4.1.77.Final contains an insufficient fix for CVE-2021-21290. When Netty's multipart decoders are used local informa... Read more
- Published: May. 06, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2016-1517
OpenCV 3.0.0 allows remote attackers to cause a denial of service (segfault) via vectors involving corrupt chunks.... Read more
Affected Products : opencv- Published: Apr. 10, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2022-23281
Windows Common Log File System Driver Information Disclosure Vulnerability... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows_10_1607 +14 more products- Published: Mar. 09, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUM- Published: Feb. 09, 2022
- Modified: Nov. 21, 2024