1001
|
7.5 |
HIGH
Network
gstreamer_project
|
gstreamer
|
GStreamer is a library for constructing graphs of media-handling components. An OOB-write vulnerability has been identified in the gst_ssa_parse_remove_override_codes function of the gstssaparse.c fi…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-47541
|
2024-12-14 04:21 |
2024-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1002
|
9.8 |
CRITICAL
Network
apple
|
watchos ipados macos tvos safari visionos iphone_os
|
The issue was addressed with improved memory handling. This issue is fixed in watchOS 11.2, visionOS 2.2, tvOS 18.2, macOS Sequoia 15.2, Safari 18.2, iOS 18.2 and iPadOS 18.2. Processing maliciously …
|
CWE-787
Out-of-bounds Write
|
CVE-2024-54534
|
2024-12-14 04:15 |
2024-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
1003
|
4.2 |
MEDIUM
Network
|
apple
|
ipados iphone_os
|
An inconsistent user interface issue was addressed with improved state management. This issue is fixed in iOS 18.2 and iPadOS 18.2. Muting a call while ringing may not result in mute being enabled.
|
NVD-CWE-noinfo
|
CVE-2024-54503
|
2024-12-14 04:15 |
2024-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1004
|
7.8 |
HIGH
Local
|
apple
|
macos
|
A path handling issue was addressed with improved validation. This issue is fixed in macOS Sequoia 15.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2. Running a mount command may unexpectedly execute ar…
|
NVD-CWE-noinfo
|
CVE-2024-54489
|
2024-12-14 04:15 |
2024-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1005
|
2.4 |
LOW
Physics
|
apple
|
iphone_os ipados
|
The issue was addressed by adding additional logic. This issue is fixed in iPadOS 17.7.3, iOS 18.2 and iPadOS 18.2. An attacker with physical access to an iOS device may be able to view notification …
|
NVD-CWE-noinfo
|
CVE-2024-54485
|
2024-12-14 04:15 |
2024-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1006
|
5.5 |
MEDIUM
Local
|
apple
|
macos
|
The issue was resolved by sanitizing logging. This issue is fixed in macOS Sequoia 15.2. An app may be able to access user-sensitive data.
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2024-54484
|
2024-12-14 04:15 |
2024-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1007
|
5.5 |
MEDIUM
Local
|
apple
|
macos
|
The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2. An app may be able to access user-sensitive data.
|
NVD-CWE-noinfo
|
CVE-2024-54477
|
2024-12-14 04:15 |
2024-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1008
|
5.5 |
MEDIUM
Local
|
apple
|
iphone_os ipados macos
|
The issue was addressed with improved memory handling. This issue is fixed in iPadOS 17.7.3, macOS Ventura 13.7.2, iOS 18.1 and iPadOS 18.1, macOS Sonoma 14.7.2. Processing a malicious crafted file m…
|
NVD-CWE-noinfo
|
CVE-2024-44201
|
2024-12-14 04:15 |
2024-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1009
|
3.3 |
LOW
Local
|
apple
|
ipados iphone_os
|
This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 18.1 and iPadOS 18.1. An app may be able to read sensitive location information.
|
NVD-CWE-noinfo
|
CVE-2024-44200
|
2024-12-14 04:15 |
2024-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1010
|
7.5 |
HIGH
Network
gstreamer_project
|
gstreamer
|
GStreamer is a library for constructing graphs of media-handling components. A null pointer dereference has been discovered in the id3v2_read_synch_uint function, located in id3v2.c. If id3v2_read_sy…
|
CWE-125 CWE-476
Out-of-bounds Read NULL Pointer Dereference
|
CVE-2024-47542
|
2024-12-14 04:03 |
2024-12-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|