Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2022-1898PUBLISHED: 2022-05-27Use After Free in GitHub repository vim/vim prior to 8.2.
CVE-2022-1907PUBLISHED: 2022-05-27Buffer Over-read in GitHub repository bfabiszewski/libmobi prior to 0.11.
CVE-2022-1908PUBLISHED: 2022-05-27Buffer Over-read in GitHub repository bfabiszewski/libmobi prior to 0.11.
CVE-2022-1909PUBLISHED: 2022-05-27Cross-site Scripting (XSS) - Stored in GitHub repository causefx/organizr prior to 2.1.2200.
CVE-2022-28394PUBLISHED: 2022-05-27
EOL Product CVE - Installer of Trend Micro Password Manager (Consumer) versions 3.7.0.1223 and below provided by Trend Micro Incorporated contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries (CWE-427).
Please note that this was reported on an EOL...
User Rank: Ninja
1/24/2016 | 2:40:08 AM
Ultimately, Apple simply needs to innovate and do more toward developing new ways of protecting customer through automated app code scanning and detection of "unusual" content in apps at both the code and binary level. If folks complain the current process for developing and releasing through Apple iTunes and so forth is already complicated, will that deter Apple from beefing up security in this area? Hopefully not. After all, to innovate in the app store platform arena could mean great exposure from both a customer service and technology perspective.