Gertjan Franken

Pesquisador deimec-DistriNet of KU Leuven
#11585de 53,638
23.7CVSS total
Vulnerabilidades · 4
Média
3
Alta
1
PT-2023-6792
5.3
2023-03-27
Apple · Apple Macos · CVE-2023-32370
**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 13.3 WebKitGTK (affected versions not specified) WPE WebKit (affected versions not specified) **Description** The issue is related to insufficient input validation, which may allow a remote attacker to impact data integrity. A logic issue was addressed with improved validation. The Content Security Policy to block domains with wildcards may fail. **Recommendations** For macOS versions prior to 13.3, update to macOS Ventura 13.3 to resolve the issue. For WebKitGTK, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For WPE WebKit, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2020-11301
5.5
2020-10-27
Apple · Ios · CVE-2019-8774
**Nome do software vulnerável e versões afetadas** Versões do iOS anteriores à 13.1 Versões do iPadOS anteriores à 13.1 Versões do macOS anteriores à 10.15 **Descrição** Um problema de esgotamento de recursos foi corrigido com uma validação de entrada aprimorada. A análise de um arquivo do iBooks criado de forma maliciosa pode levar a uma negação de serviço persistente. **Recomendações** Para versões do iOS anteriores à 13.1, atualize para o iOS 13.1 ou posterior. Para versões do iPadOS anteriores à 13.1, atualize para o iPadOS 13.1 ou posterior. Para versões do macOS anteriores à 10.15, atualize para o macOS Catalina 10.15 ou posterior.
PT-2019-19218
5.5
2019-12-18
Apple · Macos Catalina · CVE-2019-8789
**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 13.2 iPadOS versions prior to 13.2 macOS Catalina versions prior to 10.15.1 **Description** A validation issue existed in the handling of symlinks, which has been addressed with improved validation. Parsing a maliciously crafted iBooks file may lead to disclosure of user information. **Recommendations** For iOS versions prior to 13.2, update to iOS 13.2 or later. For iPadOS versions prior to 13.2, update to iPadOS 13.2 or later. For macOS Catalina versions prior to 10.15.1, update to macOS Catalina 10.15.1 or later.
PT-2019-5100
7.4
2019-09-10
Google · Google Chrome · CVE-2019-5880
**Name of the Vulnerable Software and Affected Versions** Google Chrome versions prior to 77.0.3865.75 **Description** The issue is related to insufficient policy enforcement in the Blink module of Google Chrome, allowing a remote attacker to leak cross-origin data via a crafted HTML page. This could enable the attacker to access confidential data. **Recommendations** For versions prior to 77.0.3865.75, update to version 77.0.3865.75 or later to resolve the issue.