103 matches found
CVE-2023-32372
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. Processing an image may result in disclosure of process memory...
CVE-2023-32394
The issue was addressed with improved checks. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. A person with physical access to a device may be able to view contact information from the lock screen...
CVE-2023-32422
CVE-2023-32422 is an Apple security issue addressed by adding extra SQLite logging restrictions. The vulnerability allowed an app to bypass Privacy preferences, and Apple states fixes across multiple OSes: iOS 16.5 and iPadOS 16.5, tvOS 16.5, and macOS Ventura 13.4. The public descriptions consis...
CVE-2023-32400
CVE-2023-32400 involves a privacy/entitlements issue where entitlements and privacy permissions granted to an app may be used by a malicious app. The description notes this may enable a malicious actor to exploit granted permissions, and that Apple addressed the issue with improved checks. Affect...
CVE-2023-32422
This issue was addressed by adding additional SQLite logging restrictions. This issue is fixed in iOS 16.5 and iPadOS 16.5, tvOS 16.5, macOS Ventura 13.4. An app may be able to bypass Privacy preferences...
CVE-2023-32368
An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. Processing a 3D model may result in disclosure of process memory...
CVE-2023-32389
This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. An app may be able to disclose kernel memory...
CVE-2023-32399
The issue was addressed with improved handling of caches. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. An app may be able to read sensitive location information...
CVE-2023-28202
CVE-2023-28202 relates to Apple systems where a firewall setting may fail to take effect after exiting Settings due to a state-management flaw. Affected products include iOS/iPadOS 16.x, watchOS 9.x, tvOS 16.x, and macOS Ventura 13.x. The issue is described as a state-management fix and is noted ...
CVE-2023-32354
An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 9.5, tvOS 16.5, iOS 16.5 and iPadOS 16.5. An app may be able to disclose kernel memory...
CVE-2023-32376
This issue was addressed with improved entitlements. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. An app may be able to modify protected parts of the file system...
CVE-2023-32385
CVE-2023-32385 affects Apple’s PDFKit on iOS 16.5/iPadOS 16.5 and macOS Ventura 13.4. The issue is described as a denial-of-service caused by a PDF file opening that may lead to the application terminating unexpectedly, with the underlying fix being improved memory handling. Connected sources con...
CVE-2023-32415
This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, tvOS 16.5, macOS Ventura 13.4. An app may be able to read sensitive location information...
CVE-2023-32390
CVE-2023-32390 affects Apple devices where Photos in the Hidden Photos Album could be viewed without authentication via Visual Lookup. The issue stems from insufficient checks in the Photos/Visual Lookup flow, enabling access to hidden photos. Devices affected include iOS 16.5, iPadOS 16.5, watch...
CVE-2023-32422
This issue was addressed by adding additional SQLite logging restrictions. This issue is fixed in iOS 16.5 and iPadOS 16.5, tvOS 16.5, macOS Ventura 13.4. An app may be able to bypass Privacy preferences...
CVE-2023-32367
This issue was addressed with improved entitlements. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4. An app may be able to access user-sensitive data...
CVE-2023-32411
This issue was addressed with improved entitlements. This issue is fixed in tvOS 16.5, macOS Ventura 13.4, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to bypass Privacy preferences...
CVE-2023-32420
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. An app may be able to cause unexpected system termination or read kernel memory...
CVE-2023-32394
The issue was addressed with improved checks. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. A person with physical access to a device may be able to view contact information from the lock screen...
PT-2023-2895 · Apple · Ipados +7
Name of the Vulnerable Software and Affected Versions: watchOS versions prior to 9.5 tvOS versions prior to 16.5 macOS Ventura versions prior to 13.4 macOS Big Sur versions prior to 11.7.7 macOS Monterey versions prior to 12.6.6 iOS versions prior to 15.7.6 and prior to 16.5 iPadOS versions prior...