CVE-2023-41072

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.1, iOS 17.1 and iPadOS 17.1. An app may be able to access sensitive user data...

CVE-2023-41072

CVE-2023-41072 concerns a privacy issue addressed by Apple: improved private data redaction for log entries. Affected products include macOS Sonoma 14.1, iOS 17.1 and iPadOS 17.1. The issue could allow an app to access sensitive user data due to insufficient redaction in logs. The NVD entry mirro...

CVE-2023-42845

An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.1, iOS 17.1 and iPadOS 17.1. Photos in the Hidden Photos Album may be viewed without authentication...

CVE-2023-42845

CVE-2023-42845 is an authentication issue in Apple platforms where Photos in the Hidden Photos Album could be viewed without authentication. The vulnerability is addressed by improved state management and is fixed in macOS Sonoma 14.1, iOS 17.1, and iPadOS 17.1. No exploitation details are provid...

CVE-2023-42845

An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.1, iOS 17.1 and iPadOS 17.1. Photos in the Hidden Photos Album may be viewed without authentication...

CVE-2023-40408

An inconsistent user interface issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. Hide My Email may be deactivated unexpectedly...

CVE-2023-40408

CVE-2023-40408 is an Apple product issue described as an inconsistent user interface problem addressed by improved state management. The NVD entry notes the patch is included in macOS Sonoma 14.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, and iOS 17.1/iPadOS 17.1, with Hide My Email potentially...

CVE-2023-40408

An inconsistent user interface issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. Hide My Email may be deactivated unexpectedly...

CVE-2023-41976

CVE-2023-41976 is a use-after-free vulnerability in processing web content that can lead to arbitrary code execution. Affected products include Apple platforms: iOS 17.1 and iPadOS 17.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Sonoma 14.1, Safari 17.1, and tvOS 17.1. The issue is fixed ...

CVE-2023-41976

A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17.1 and iPadOS 17.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Sonoma 14.1, Safari 17.1, tvOS 17.1. Processing web content may lead to arbitrary code execution...

CVE-2023-40449

The issue was addressed with improved memory handling. This issue is fixed in iOS 17.1 and iPadOS 17.1, macOS Monterey 12.7.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Ventura 13.6.1, macOS Sonoma 14.1. An app may be able to cause a denial-of-service...

CVE-2023-40449

CVE-2023-40449 is an Apple vulnerability where an application may cause a denial-of-service due to an issue in memory handling. The published entry specifies a local attack surface with user interaction required, and the root cause is related to memory handling that could be exploited by a compro...

CVE-2023-40445

The issue was addressed with improved UI handling. This issue is fixed in iOS 17.1 and iPadOS 17.1. A device may persistently fail to lock...

CVE-2023-40445

CVE-2023-40445 concerns Apple iOS/iPadOS where a device may persistently fail to lock due to an issue addressed by improved UI handling. The vulnerability is fixed in iOS 17.1 and iPadOS 17.1 (Apple advisory HT213982). Connected sources confirm that the flaw is tied to the user interface state re...

CVE-2023-40445

The issue was addressed with improved UI handling. This issue is fixed in iOS 17.1 and iPadOS 17.1. A device may persistently fail to lock...

CVE-2023-41254

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 17.1 and iPadOS 17.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Ventura 13.6.1, macOS Sonoma 14.1. An app may be able to access sensitive user data...

CVE-2023-41254

CVE-2023-41254 is a privacy-related issue in Apple platforms where log entries could reveal sensitive user data. It affects iOS/iPadOS 16.7.2 and 17.1, watchOS 10.1, macOS Ventura 13.6.1 and Sonoma 14.1. The root cause is improper private data redaction in logs. The issue is fixed in iOS/iPadOS 1...

CVE-2023-41254

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 17.1 and iPadOS 17.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Ventura 13.6.1, macOS Sonoma 14.1. An app may be able to access sensitive user data...

CVE-2023-41983

CVE-2023-41983 is a WebKitGTK/WebKitGTK4 memory-handling related DoS vulnerability. Connected advisories show the issue affects WebKitGTK/WebKitGTK4 components and is fixed by newer builds (e.g., webkitgtk4 2.42.3-3.amzn2.0.1.x86_64 in AL2, and corresponding WebKitGTK updates in other distributio...

CVE-2023-41983

The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.1, Safari 17.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. Processing web content may lead to a denial-of-service...