#microsoft

CVE-2021-30620: Chromium: CVE-2021-30620 Insufficient policy enforcement in Blink

*What is the version information for this release?* | Microsoft Edge Version | Date Released | Based on Chromium Version | | ----- | ----- | ----- | | 93.0.961.38 | 9/2/2021 | 93.0.4577.63 |

3 years ago

Microsoft Security Response Center

Open in Source

#Microsoft Edge (Chromium-based)#Security Vulnerability #microsoft

CVE-2021-30619: Chromium: CVE-2021-30619 UI Spoofing in Autofill

*What is the version information for this release?* | Microsoft Edge Version | Date Released | Based on Chromium Version | | ----- | ----- | ----- | | 93.0.961.38 | 9/2/2021 | 93.0.4577.63 |

3 years ago

Microsoft Security Response Center

Open in Source

#Microsoft Edge (Chromium-based)#Security Vulnerability #microsoft

CVE-2021-39272: NO STARTTLS

Fetchmail before 6.4.22 fails to enforce STARTTLS session encryption in some circumstances, such as a certain situation with IMAP and PREAUTH.

3 years ago

CVE

Open in Source

#vulnerability #web #ios #android #mac #apple #microsoft #apache #php #ldap #samsung #auth #ruby #ssl

Update on the vulnerability in the Azure Cosmos DB Jupyter Notebook Feature

On August 12, 2021, a security researcher reported a vulnerability in the Azure Cosmos DB Jupyter Notebook feature that could potentially allow a user to gain access to another customer’s resources by using the account’s primary read-write key. We mitigated the vulnerability immediately. Our investigation indicates that no customer data was accessed because of this vulnerability by third parties or security researchers.

3 years ago

msrc-blog

Open in Source

#vulnerability #microsoft #auth

CVE-2021-30913: About the security content of macOS Monterey 12.0.1

The issue was addressed with improved permissions logic. This issue is fixed in macOS Monterey 12.0.1, macOS Big Sur 11.6.1. An unprivileged application may be able to edit NVRAM variables.

3 years ago

CVE

Open in Source

#xss #vulnerability #web #mac #windows #apple #google #microsoft #dos #js #intel #pdf #buffer_overflow #alibaba #auth #ibm #webkit #wifi

CVE-2021-30935: About the security content of macOS Big Sur 11.6.2

A logic issue was addressed with improved validation. This issue is fixed in Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. An application may be able to execute arbitrary code with kernel privileges.

3 years ago

CVE

Open in Source

#vulnerability #mac #google #microsoft #cisco #dos #java #intel #buffer_overflow #wifi

CVE-2021-30922: About the security content of macOS Big Sur 11.6.1

Multiple out-of-bounds write issues were addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.6.1. A malicious application may be able to execute arbitrary code with kernel privileges.

3 years ago

CVE

Open in Source

#mac #windows #apple #google #microsoft #intel #pdf #auth

CVE-2021-30977: About the security content of macOS Monterey 12.1

A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.1, Security Update 2021-008 Catalina, macOS Big Sur 11.6.2. A malicious application may be able to execute arbitrary code with kernel privileges.

3 years ago

CVE

Open in Source

#sql #vulnerability #web #mac #google #microsoft #cisco #dos #java #intel #buffer_overflow #alibaba #dell #webkit #wifi

CVE-2021-30970: About the security content of macOS Monterey 12.1

A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.1, macOS Big Sur 11.6.2. A malicious application may be able to bypass Privacy preferences.

3 years ago

CVE

Open in Source

#vulnerability #web #mac #google #microsoft #dos #java

CVE-2021-30935: About the security content of macOS Big Sur 11.6.2

3 years ago

CVE

Open in Source

#vulnerability #mac #google #microsoft #dos #java

Tag

#microsoft