CVE-2022-0751 An attacker can create Snippets with misleading content which could trick unsuspecting users into executing arbitrary commands.
Snippet files are small text files which allow users to define custom commands to be executed in their project. If malformed, these files can contain
CVE-2022-0330 An attacker could run malicious code on the GPU.
This issue may occur while taking screenshots, parsing media files, or other activities that may occur while the system is running in a headless mode.
CVE-2022-27226 An issue was found in iRZ Mobile routers' /api/crontab that allows a threat actor to create a crontab entry.
This issue affects all iRZ router models.
iRZ Mobile routers running firmware up to and including 1.1.8 (released on 2019-01-04) are vulnerable. iRZ
CVE-2022-22594 - Cross-Origin IndexedDB Vulnerability Leaks Sensitive User Data on Apple Devices
In January 2022, Apple patched a major privacy vulnerability: CVE-2022-22594. This bug exposed how IndexedDB—the main browser database for websites—could cross the boundaries
CVE-2022-22639 Improved state management was addressed with iOS 15.4 and iPadOS 15.4.
This may lead to unexpected behavior and data loss. Apple released security updates to address the Spectre and Meltdown vulnerabilities in the Intel processor line.
Episode
00:00:00
00:00:00