Cyberveilleby Decio
Nuage de tags
Mur d'images
Quotidien
Flux RSS
  • Flux RSS
  • Daily Feed
  • Weekly Feed
  • Monthly Feed
Filtres

Liens par page

  • 20 links
  • 50 links
  • 100 links

Filtres

Untagged links
7 résultats taggé Safari  ✕
Project Zero: An Autopsy on a Zombie In-the-Wild 0-day https://googleprojectzero.blogspot.com/2022/06/an-autopsy-on-zombie-in-wild-0-day.html
21/06/2022 08:57:54
QRCode
archive.org

Whenever there’s a new in-the-wild 0-day disclosed, I’m very interested in understanding the root cause of the bug. This allows us to then understand if it was fully fixed, look for variants, and brainstorm new mitigations. This blog is the story of a “zombie” Safari 0-day and how it came back from the dead to be disclosed as exploited in-the-wild in 2022. CVE-2022-22620 was initially fixed in 2013, reintroduced in 2016, and then disclosed as exploited in-the-wild in 2022. If you’re interested in the full root cause analysis for CVE-2022-22620, we’ve published it here.

googleprojectzero EN 2022 0-day Safari CVE-2022-22620 Apple
Jamf Threat Labs identifies Safari vulnerability (CVE-2022-22616) allowing for Gatekeeper bypass https://www.jamf.com/blog/jamf-threat-labs-safari-vuln-gatekeeper-bypass/
28/04/2022 10:52:08
QRCode
archive.org
thumbnail

The identified vulnerability allows bypassing of Gatekeeper security and app notorization, has been patched by Apple.

jamf 2022 EN Safari CVE-2022-22616 Gatekeeper Apple macOS
Safari Flaws Exposed Webcams, Online Accounts, and More https://www.wired.com/story/safari-flaws-webcam-online-accounts-mic/
15/02/2022 10:39:40
QRCode
archive.org
thumbnail

Apple awarded a $100,500 bug bounty to the researcher who discovered the latest major vulnerability in its browser.

apple safari vulnerabilities bugbounty WIRED webcam
Webcam Hacking (again) - Safari UXSS https://www.ryanpickren.com/safari-uxss
15/02/2022 10:38:37
QRCode
archive.org
thumbnail

$100,500 Apple Bug Bounty for hacking the webcam via a Safari Universal Cross-Site Scripting (UXSS) bug. CVE-2021-30861, CVE-2021-30975

GeorgiaTechHacker Pickren Safari UXSS Apple bugbounty CVE-2021-30861 CVE-2021-30975
Mettez à jour iOS ! WebKit contient une vulnérabilité dangereuse https://www.kaspersky.fr/blog/webkit-vulnerability-cve-2022-22620/18550/
11/02/2022 18:30:02
QRCode
archive.org
thumbnail

Apple a publié iOS 15.3.1 pour corriger la vulnérabilité CVE-2022-22620 de WebKit, qui serait activement exploitée par les cybercriminels.

version EN

CVE-2022-22620 Apple iOS iPadOS WebKit Safari FR Kaspersky
Nouvelle version de Safari 15.3 sur Big Sur et Catalina pour combler une faille importante | MacGeneration https://www.macg.co/logiciels/2022/02/nouvelle-version-de-safari-153-sur-big-sur-et-catalina-pour-combler-une-faille-importante-127163
11/02/2022 18:25:31
QRCode
archive.org
thumbnail

"Sorti hier, macOS 12.2.1 règle un problème de sécurité dans WebKit, le moteur de Safari, qui aurait pu permettre à une personne malintentionnée d'exécuter du code arbitraire en faisant simplement visiter à l'utilisateur une page web malveillante (CVE-2022-22620). Si votre Mac n'est pas compatible avec macOS Monterey, une mise à jour individuelle de Safari est disponible."

CVE-2022-22620 Safari BigSur Catalina FR
Apple Releases iOS, iPadOS, macOS Updates to Patch Actively Exploited Zero-Day Flaw https://thehackernews.com/2022/02/apple-releases-ios-ipados-macos-updates.html
11/02/2022 18:17:35
QRCode
archive.org

"Apple on Thursday released security updates for iOS, iPadOS, macOS, and Safari to address a new WebKit flaw that it said may have been actively exploited in the wild, making it the company's third zero-day patch since the start of the year."

CVE-2022-22620 iPadOs iOS macOS Safari EN
406 links
Shaarli - Le gestionnaire de marque-pages personnel, minimaliste, et sans base de données par la communauté Shaarli - Theme by kalvn - Curated by Decio