George Nosenko

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 14.6 iPadOS versions prior to 14.6 **Description** A race condition was addressed with improved state handling, which may allow an application to cause unexpected system termination or write kernel memory. **Recommendations** For iOS versions prior to 14.6, update to iOS 14.6 or later to resolve the issue. For iPadOS versions prior to 14.6, update to iPadOS 14.6 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 14.7 macOS Big Sur versions prior to 11.5 **Description** A memory corruption issue was addressed with improved state management, allowing an application to potentially execute arbitrary code with kernel privileges. **Recommendations** For iOS versions prior to 14.7, update to iOS 14.7 or later to resolve the issue. For macOS Big Sur versions prior to 11.5, update to macOS Big Sur 11.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 11.5 Apple T2 Security Chip (affected versions not specified) **Description** A local attacker may be able to execute code. Multiple issues were addressed with improved logic. **Recommendations** For macOS versions prior to 11.5, update to macOS Big Sur 11.5 to resolve the issue. For Apple T2 Security Chip, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** SAP KERNEL versions 7.00 (7000.52.12.34966) and 7.40 (7400.12.21.30308) **Description** A buffer overflow issue exists in the C SAPGPARAM function within the NetWeaver Dispatcher, potentially allowing remote authenticated users to cause a denial of service or possibly execute arbitrary code. **Recommendations** For SAP KERNEL version 7.00 (7000.52.12.34966), update to a version that addresses this issue. For SAP KERNEL version 7.40 (7400.12.21.30308), update to a version that addresses this issue.