Lucene search
HistoryJun 23, 2023 - 6:15 p.m.
CVE-2023-32382
input validation
macos big sur
macos monterey
macos ventura
3d model
process memory disclosure
cve-2023-32382
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
4.6
Confidence
High
EPSS
0
Percentile
15.5%
An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. Processing a 3D model may result in disclosure of process memory.
Affected configurations
Node
applemacosRange11.0–11.7.7
ORapplemacosRange12.0.0–12.6.6
ORapplemacosRange13.0–13.4
Related
cvelist
cvelist
CVE-2023-32382
2023-06-23 00:00:00
prion
prion
Input validation
2023-06-23 18:15:00
cve
cve
CVE-2023-32382
2023-06-23 18:15:12
apple
apple
About the security content of macOS Big Sur 11.7.7
2023-05-18 00:00:00
About the security content of macOS Monterey 12.6.6
2023-05-18 00:00:00
About the security content of macOS Ventura 13.4
2023-05-18 00:00:00
nessus
nessus
macOS 11.x < 11.7.7 Multiple Vulnerabilities (HT213760)
2023-05-18 00:00:00
macOS 12.x < 12.6.6 Multiple Vulnerabilities (HT213759)
2023-05-18 00:00:00
macOS 13.x < 13.4 Multiple Vulnerabilities (HT213758)
2023-05-18 00:00:00
openvas
openvas
Apple Mac OS X Security Update (HT213760)
2023-05-22 00:00:00
Apple Mac OS X Security Update (HT213759)
2023-05-22 00:00:00
Apple Mac OS X Security Update (HT213758)
2023-05-22 00:00:00
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
4.6
Confidence
High
EPSS
0
Percentile
15.5%
Related for NVD:CVE-2023-32382