PT-2023-8363 · Apple · Macos Monterey +5

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 17.1 iPadOS versions prior to 17.1 macOS Monterey versions prior to 12.7.1 iOS versions prior to 16.7.2 iPadOS versions prior to 16.7.2 macOS Ventura versions prior to 13.6.1 macOS Sonoma versions prior to 14.1...

About the security content of iOS 16.7.2 and iPadOS 16.7.2

About the security content of iOS 16.7.2 and iPadOS 16.7.2 This document describes the security content of iOS 16.7.2 and iPadOS 16.7.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...

About the security content of macOS Monterey 12.7.1

About the security content of macOS Monterey 12.7.1 This document describes the security content of macOS Monterey 12.7.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or...

CVE-2023-40183

CVE-2023-40183 affects DataEase prior to 1.18.11. The vulnerability arises because the application uses only ImageIO.read() to verify image files without restricting allowed suffixes, enabling an attacker to embed executable/attack code in an image and rename it with an HTML extension to steal us...

The vulnerability of the ImageIO component in operating systems such as MacOS, iOS, and iPadOS allows a hacker to execute arbitrary code.

The vulnerability of the ImageIO component in operating systems such as MacOS, iOS, and iPadOS relates to the execution of operations outside of the buffer during the processing of graphic files. Exploiting this vulnerability allows an attacker to execute arbitrary code...

About the security content of macOS Monterey 12.6.9

About the security content of macOS Monterey 12.6.9 This document describes the security content of macOS Monterey 12.6.9. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or...

About the security content of iOS 15.7.9 and iPadOS 15.7.9

About the security content of iOS 15.7.9 and iPadOS 15.7.9 This document describes the security content of iOS 15.7.9 and iPadOS 15.7.9. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...

About the security content of macOS Big Sur 11.7.10

About the security content of macOS Big Sur 11.7.10 This document describes the security content of macOS Big Sur 11.7.10. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or...

Apple iOS, iPadOS, and macOS ImageIO Buffer Overflow Vulnerability

Apple iOS, iPadOS, and macOS contain a buffer overflow vulnerability in ImageIO when processing a maliciously crafted image, which may lead to code execution. This vulnerability was chained with CVE-2023-41061...

About the security content of iOS 16.6.1 and iPadOS 16.6.1

About the security content of iOS 16.6.1 and iPadOS 16.6.1 This document describes the security content of iOS 16.6.1 and iPadOS 16.6.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...

About the security content of macOS Ventura 13.5.2

About the security content of macOS Ventura 13.5.2 This document describes the security content of macOS Ventura 13.5.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or...

VulnCheck KEV: CVE-2023-41064

Apple iOS, iPadOS, and macOS contain a buffer overflow vulnerability in ImageIO when processing a maliciously crafted image, which may lead to code execution. This vulnerability was chained with CVE-2023-41061...

The vulnerability of the ImageIO component in the Oracle Java SE software platform and the Oracle GraalVM Enterprise Edition virtual machine allows a hacker to trigger a service failure.

The vulnerability of the ImageIO component in Oracle Java SE and the Oracle GraalVM Enterprise Edition software platform is related to unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the ImageIO component in the Oracle Java SE software platform and the Oracle GraalVM Enterprise Edition virtual machine allows a hacker to trigger a service failure.

The vulnerability of the ImageIO component in Oracle Java SE and the Oracle GraalVM Enterprise Edition software platform is related to unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

The vulnerability of the ImageIO component in the Oracle Java SE software platform and the Oracle GraalVM Enterprise Edition virtual machine allows a hacker to trigger a service failure.

The vulnerability of the ImageIO component in Oracle Java SE and the Oracle GraalVM Enterprise Edition software platform is related to unlimited distribution of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

Apple macOS EXR Image Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the ImageIO framework is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the...

Apple macOS ImageIO EXR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the ImageIO library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the ImageIO...

Apple macOS KTX Image Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the ImageIO framework is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the...

PT-2023-4994

Name of the Vulnerable Software and Affected Versions Apple iOS, iPadOS, and macOS versions prior to 16.6.1 Apple macOS Monterey versions prior to 12.6.9 Apple macOS Ventura versions prior to 13.5.2 Apple iOS versions prior to 15.7.9 Apple iPadOS versions prior to 15.7.9 Apple macOS Big Sur...

The vulnerability of the ImageIO component in operating systems such as MacOS, iOS, tvOS, iPadOS, and watchOS allows attackers to execute arbitrary code.

The vulnerability of the ImageIO component in operating systems such as MacOS, iOS, tvOS, iPadOS, and watchOS is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...