14 matches found
CVE-2023-41992
The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.7, iOS 16.7 and iPadOS 16.7, macOS Ventura 13.6. A local attacker may be able to elevate their privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS...
Apple Addresses Zero-Day Flaws Exploited in the Wild
Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Apple addressed three zero-day vulnerabilities used in an iPhone exploit chain to deliver the Predator spyware. The vulnerabilities involved were CVE-2023-41991, CVE-2023-41992, and CVE-2023-41993...
Apple iOS < 17.0.1 Multiple Vulnerabilities (HT213926)
Binary data appleios1701check.nbin...
Emergency update! Apple patches three zero-days
Apple has released security updates for several products to address a handful of zero-day vulnerabilities that may already have been used by criminals. Updates are available for: iOS 16.7 and iPadOS 16.7 iOS 17.0.1 and iPadOS 17.0.1 watchOS 9.6.3 watchOS 10.0.1 macOS Ventura 13.6 macOS Monterey...
Apple Rushes to Patch 3 New Zero-Day Flaws: iOS, macOS, Safari, and More Vulnerable
Apple has released yet another round of security patches to address three actively exploited zero-day flaws impacting iOS, iPadOS, macOS, watchOS, and Safari, taking the total tally of zero-day bugs discovered in its software this year to 16. The list of security vulnerabilities is as follows -...
CVE-2023-41992
The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.7, iOS 16.7 and iPadOS 16.7, macOS Ventura 13.6. A local attacker may be able to elevate their privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS...
CVE-2023-41992
The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.7, iOS 16.7 and iPadOS 16.7, macOS Ventura 13.6. A local attacker may be able to elevate their privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS...
CVE-2023-41992
CVE-2023-41992 is a kernel privilege-escalation flaw in Apple OSes (iOS, iPadOS, macOS) affecting kernel IPC/right handling. The connected docs describe a scenario where an entry without a valid port type can be corrupted during ipc_right_copyout/destroy, potentially allowing a local attacker to ...
CVE-2023-41992
The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.7, iOS 16.7 and iPadOS 16.7, macOS Ventura 13.6. A local attacker may be able to elevate their privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS...
About the security content of watchOS 10.0.1
About the security content of watchOS 10.0.1 This document describes the security content of watchOS 10.0.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...
About the security content of watchOS 9.6.3
About the security content of watchOS 9.6.3 This document describes the security content of watchOS 9.6.3. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...
About the security content of macOS Monterey 12.7
About the security content of macOS Monterey 12.7 This document describes the security content of macOS Monterey 12.7. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or release...
macOS 13.x < 13.6 Multiple Vulnerabilities (HT213931)
The remote host is running a version of macOS / Mac OS X that is 13.x prior to 13.6. It is, therefore, affected by multiple vulnerabilities: - A malicious app may be able to bypass signature validation. CVE-2023-41991 - A local attacker may be able to elevate their privileges CVE-2023-41992 Note...
macOS 12.x < 12.7 Multiple Vulnerabilities (HT213932)
The remote host is running a version of macOS / Mac OS X that is 12.x prior to 12.7. It is, therefore, affected by multiple vulnerabilities: - The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and...