Lucene search
K

48 matches found

Prion
Prion
added 2023/05/08 8:15 p.m.26 views

Input validation

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.3, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to cause unexpected system termination or write kernel memory...

4.4CVSS7.1AI score0.00256EPSS
Exploits0References4Affected Software3
Prion
Prion
added 2023/05/08 8:15 p.m.11 views

Authentication flaw

The issue was addressed with improved authentication. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. A user in a privileged network position may be able to spoof a VPN server that is configured with...

4CVSS6AI score0.00712EPSS
Exploits0References5Affected Software3
Prion
Prion
added 2023/05/08 8:15 p.m.18 views

Input validation

A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Ventura 13.3, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to disclose kernel memory...

1.9CVSS5.5AI score0.00314EPSS
Exploits0References5Affected Software3
Prion
Prion
added 2023/05/08 8:15 p.m.20 views

Input validation

A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Ventura 13.3, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to disclose kernel memory...

1.9CVSS5.4AI score0.00341EPSS
Exploits0References4Affected Software3
Vulnrichment
Vulnrichment
added 2023/05/08 12:0 a.m.7 views

CVE-2023-23541

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 15.7.4 and iPadOS 15.7.4, iOS 16.4 and iPadOS 16.4. An app may be able to access information about a user’s contacts...

2.7AI score0.00238EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/05/08 12:0 a.m.28 views

CVE-2023-23535

The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, macOS Big Sur 11.7.5, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.6, tvOS 16.4, watchOS 9.4. Processing a maliciously crafted image may result in disclosure of process...

6.1AI score0.00239EPSS
Exploits0References7
Cvelist
Cvelist
added 2023/05/08 12:0 a.m.17 views

CVE-2023-27946

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Ventura 13.3, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution...

8.3AI score0.00253EPSS
Exploits0References4
CVE
CVE
added 2023/05/08 12:0 a.m.84 views

CVE-2023-27946

CVE-2023-27946 describes an out-of-bounds read fixed by Apple in macOS Ventura 13.3, iOS 15.7.4, iPadOS 15.7.4, macOS Monterey 12.6.4, and macOS Big Sur 11.7.5. The issue could cause unexpected termination or arbitrary code execution when processing a maliciously crafted file. Affected components...

7.8CVSS7.1AI score0.00253EPSS
Exploits0References4Affected Software3
CVE
CVE
added 2023/05/08 12:0 a.m.114 views

CVE-2023-23535

CVE-2023-23535 affects Apple operating systems, with the vulnerability in ImageIO-related memory handling that may cause disclosure of process memory when processing a malicious image. Affected products/versions include macOS Monterey 12.6.6, macOS Big Sur 11.7.5, macOS Ventura 13.3, iOS 15.7.4/i...

5.5CVSS4.4AI score0.00239EPSS
Exploits0References7Affected Software5
CVE
CVE
added 2023/05/08 12:0 a.m.107 views

CVE-2023-27963

CVE-2023-27963 concerns Apple platforms where a shortcut may access sensitive data with certain actions without user prompts. The issue was addressed via additional permissions checks and is fixed in: macOS Ventura 13.3; macOS Monterey 12.6.4; iOS 16.4 and iPadOS 16.4; iOS 15.7.4 and iPadOS 15.7....

7.5CVSS6.3AI score0.00807EPSS
Exploits0References6Affected Software4
CVE
CVE
added 2023/05/08 12:0 a.m.295 views

CVE-2023-23541

CVE-2023-23541 affects Apple iOS/iPadOS. A privacy issue could allow an app to access information about a user’s contacts due to insufficient private data redaction in log entries. The issue is fixed in iOS 15.7.4 / iPadOS 15.7.4 and in iOS 16.4 / iPadOS 16.4. Affected components are tied to log-...

3.3CVSS2.8AI score0.00238EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2023/05/08 12:0 a.m.98 views

CVE-2023-23543

CVE-2023-23543 affects Apple platforms (macOS Ventura 13.3; iOS 15.7.4/iPadOS 15.7.4; iOS 16.4/iPadOS 16.4; watchOS 9.4). A sandboxed app may be able to determine which other app is currently using the camera due to restricted observability of app states. Root cause: privacy-related observability...

3.6CVSS3AI score0.00243EPSS
Exploits0References4Affected Software3
Cvelist
Cvelist
added 2023/05/08 12:0 a.m.17 views

CVE-2023-23537

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, watchOS 9.4, macOS Big Sur 11.7.5. An app may be able to read sensitive location information...

6AI score0.00248EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/05/08 12:0 a.m.21 views

CVE-2023-27956

The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, tvOS 16.4, watchOS 9.4. Processing a maliciously crafted image may result in disclosure of process memory...

6.2AI score0.00242EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/05/08 12:0 a.m.25 views

CVE-2023-23541

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 15.7.4 and iPadOS 15.7.4, iOS 16.4 and iPadOS 16.4. An app may be able to access information about a user’s contacts...

5.2AI score0.00238EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/05/08 12:0 a.m.21 views

CVE-2023-23543

The issue was addressed with additional restrictions on the observability of app states. This issue is fixed in macOS Ventura 13.3, iOS 15.7.4 and iPadOS 15.7.4, iOS 16.4 and iPadOS 16.4, watchOS 9.4. A sandboxed app may be able to determine which app is currently using the camera...

5.3AI score0.00243EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/05/08 12:0 a.m.24 views

CVE-2023-27941

A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Ventura 13.3, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to disclose kernel memory...

5.9AI score0.00341EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/05/08 12:0 a.m.20 views

CVE-2023-28201

This issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.3, Safari 16.4, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, tvOS 16.4. A remote user may be able to cause unexpected app termination or arbitrary code execution...

8.9AI score0.01174EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/05/08 12:0 a.m.7 views

CVE-2023-27949

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, iOS 15.7.4 and iPadOS 15.7.4. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution...

7.2AI score0.00251EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/05/08 12:0 a.m.18 views

CVE-2023-28200

A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Ventura 13.3, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to disclose kernel memory...

5.9AI score0.00314EPSS
Exploits0References5
Rows per page
Query Builder