The host is installed with Apple Mac OS 12 before 12.4 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle issues in hardened runtime. On successful exploitation, an app with root privileges may be able to access private information.
The host is installed with Apple Mac OS 12 before 12.4 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle issues in improved checks. On successful exploitation, an app may gain unauthorized access to Bluetooth.
The host is installed with Apple Mac OS 10.5.7, Apple Mac OS 11 before 11.6.6 or Apple Mac OS 12 before 12.4 and is prone to a denial-of-service vulnerability. A flaw is present in the application, which fails to properly handle issues in improved checks. On successful exploitation, a remote user may be able to cause a denial-of-service.
The host is installed with Apple Mac OS 10.5.7, Apple Mac OS 11 before 11.6.6 or Apple Mac OS 12 before 12.4 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle issues in state management. On successful exploitation, an app may be able to gain elevated privileges.
The host is installed with Apple Mac OS 11 before 11.6.6 or Apple Mac OS 12 before 12.4 and is prone to a security bypass vulnerability. A flaw is present in the application, which fails to properly handle issues in improved checks. On successful exploitation, an app may be able to bypass privacy preferences.
The host is installed with Apple Mac OS 12 before 12.4 and is prone to an information disclosure vulnerability. A flaw is present in the application, which fails to properly handle issues in validation. On successful exploitation, a user may be able to view sensitive user information.
The host is installed with Apple Mac OS X before 10.15.7, Apple Mac OS 11 before 11.6.5 or Apple Mac OS 12 before 12.3 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle a state management issue. On successful exploitation, an application may be able to gain elevated privileges.
It was discovered that zsh, a powerful shell and scripting language, did not prevent recursive prompt expansion. This would allow an attacker to execute arbitrary commands into a user"s shell, for instance by tricking a vcs_info user into checking out a git branch with a specially crafted name.
Danilo Ramos discovered that incorrect memory handling in zlib"s deflate handling could result in denial of service or potentially the execution of arbitrary code if specially crafted input is processed.