CVE-2022-32886 An overflow issue was fixed in Safari 16, iOS 16, iOS 15.7 and iPadOS 15.7.
This issue is fixed in Safari 16, iOS 16, iOS 15.7 and iPadOS 15.7. An issue where system extensions could load malicious code
CVE-2022-32912 Out-of-bounds read was fixed in Safari 16, iOS 16, iOS 15.7 and iPadOS 15.7.
This issue is addressed with improved memory handling. WebAssembly may be enabled in some JavaScript projects, but there is a risk that the imported code
CVE-2022-32863 Memory corruption issue fixed in Safari 15.6, macOS Monterey 12.5.
This issue is fixed in Safari 15.5, macOS High Sierra 10.13.1. It may be possible to use social engineering techniques to trick
CVE-2022-38614 IGB Files and OutfileService has an issue where attackers can list and download files by modifying the PATH parameter.
The vulnerability exists due to the Ingesting Service exposing a user-controlled Path variable to the application. An attacker can leverage this to append arbitrary file
CVE-2022-37081 TOTOLINK A7000R V9.1.0u.6115 contains a command injection vulnerability via the command parameter at setting/setTracerouteCfg.
This issue can be exploited by an attacker by passing the following request to the targeted Apache server:
POST /cgi-bin/setTracerouteCfg HTTP/1.0 Host:
Episode
00:00:00
00:00:00