CVE-2022-32886 An overflow issue was fixed in Safari 16, iOS 16, iOS 15.7 and iPadOS 15.7.
This issue is fixed in Safari 16, iOS 16, iOS 15.7 and iPadOS 15.7. An issue where system extensions could load malicious code
CVE-2022-38614 IGB Files and OutfileService has an issue where attackers can list and download files by modifying the PATH parameter.
The vulnerability exists due to the Ingesting Service exposing a user-controlled Path variable to the application. An attacker can leverage this to append arbitrary file
CVE-2022-37081 TOTOLINK A7000R V9.1.0u.6115 contains a command injection vulnerability via the command parameter at setting/setTracerouteCfg.
This issue can be exploited by an attacker by passing the following request to the targeted Apache server:
POST /cgi-bin/setTracerouteCfg HTTP/1.0 Host:
CVE-2022-32893 An out-of-bounds write issue was fixed in iOS/iPadOS/MacOS Monterey/Safari 15.6.1. Malicious content may lead to arbitrary code execution.
The issue is addressed by installing the latest software updates. An out-of-bounds read issue was discovered in the caching of font assets. This issue may
CVE-2022-32550 An issue was found in AgileBits 1Password's method for connecting to the 1Password service.
This could then lead to the disclosure of passwords or other sensitive data. To reduce the likelihood of this happening, 1Password apps and integrations are
Episode
00:00:00
00:00:00