Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:48 a.m.8 views

CVE-2023-32369

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An app may be able to modify protected parts of the file system...

6CVSS6AI score0.00682EPSS
Exploits0References1
NVD
NVD
added 2023/06/23 6:15 p.m.21 views

CVE-2023-32369

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An app may be able to modify protected parts of the file system...

6CVSS5.1AI score0.00682EPSS
Exploits0References3
CVE
CVE
added 2023/06/23 12:0 a.m.782 views

CVE-2023-32369

CVE-2023-32369 is a macOS SIP bypass triggered by environment-variable poisoning (PERL5OPT and BASH_ENV) that can enable arbitrary action by tampering with system processes during Migration Assistant flow. Microsoft’s writeups detail how systemmigrationd and related components can be coerced to r...

6CVSS5.9AI score0.00682EPSS
Exploits0References3Affected Software1
Malwarebytes
Malwarebytes
added 2023/05/31 11:45 p.m.71 views

Microsoft gives Apple a migraine

On May 18, 2023, Apple published security content for macOS Ventura 13.4, macOS Monterey 12.6.6, and macOS Big Sur 11.7.7 that addressed a logic issue in libxpc. The Common Vulnerabilities and Exposures CVE database lists publicly disclosed computer security flaws. The CVE we are going to discuss...

6.7AI score0.00682EPSS
Exploits0
The Hacker News
The Hacker News
added 2023/05/31 11:57 a.m.71 views

Microsoft Details Critical Apple macOS Vulnerability Allowing SIP Protection Bypass

Microsoft has shared details of a now-patched flaw in Apple macOS that could be abused by threat actors with root access to bypass security enforcements and perform arbitrary actions on affected devices. Specifically, the flaw – dubbed Migraine and tracked as CVE-2023-32369 – could be abused to g...

7.8CVSS8AI score0.13453EPSS
Exploits0
The Hacker News
The Hacker News
added 2023/05/31 11:57 a.m.4 views

Microsoft Details Critical Apple macOS Vulnerability Allowing SIP Protection Bypass

Microsoft has shared details of a now-patched flaw in Apple macOS that could be abused by threat actors with root access to bypass security enforcements and perform arbitrary actions on affected devices. Specifically, the flaw – dubbed Migraine and tracked as CVE-2023-32369 – could be abused to g...

7.8CVSS7.7AI score0.13453EPSS
Exploits0
Microsoft Secure
Microsoft Secure
added 2023/05/30 4:0 p.m.58 views

New macOS vulnerability, Migraine, could bypass System Integrity Protection

A new vulnerability, which we refer to as “Migraine” for its involvement with macOS migration, could allow an attacker with root access to automatically bypass System Integrity Protection SIP in macOS and perform arbitrary operations on a device. We shared these findings with Apple through...

4.3CVSS8.2AI score0.10352EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/05/18 12:0 a.m.45 views

macOS 12.x < 12.6.6 Multiple Vulnerabilities (HT213759)

The remote host is running a version of macOS / Mac OS X that is 12.x prior to 12.6.6. It is, therefore, affected by multiple vulnerabilities: - A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in watchOS 9.5, macOS Ventura 13.4, iOS 15.7.6 a...

9.8CVSS7.8AI score0.01706EPSS
Exploits2References33
Rows per page
Query Builder