CVE-2023-41983

The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.1, Safari 17.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. Processing web content may lead to a denial-of-service...

CVE-2023-40413

The issue was addressed with improved handling of caches. This issue is fixed in iOS 17.1 and iPadOS 17.1, macOS Monterey 12.7.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Ventura 13.6.1, macOS Sonoma 14.1. An app may be able to read sensitive location information...

CVE-2023-40413

CVE-2023-40413 affects Apple platforms (iOS 17.1/iPadOS 17.1 and earlier/macOS/macOS Sonoma 14.1 etc.) in the Find My component. The issue is described as an improvement in cache handling that could allow an app to read sensitive location information. The vulnerability is fixed in iOS 17.1/iPadOS...

CVE-2023-41982

This issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Sonoma 14.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. An attacker with physical access may be able to use Siri to access sensitive user data...

CVE-2023-41982

CVE-2023-41982 affects Apple devices where an attacker with physical access can use Siri from a locked device to access sensitive user data. The issue is addressed by restricting options offered on a locked device and is fixed in macOS Sonoma 14.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, and ...

CVE-2023-41977

The issue was addressed with improved handling of caches. This issue is fixed in macOS Sonoma 14.1, iOS 16.7.2 and iPadOS 16.7.2. Visiting a malicious website may reveal browsing history...

CVE-2023-41977

CVE-2023-41977 is a Safari-related issue where improved cache handling fixes a vulnerability that could allow a malicious website to reveal browsing history. Affected products/versions (per connected sources): macOS Sonoma 14.1; iOS 16.7.2; iPadOS 16.7.2. Remedy: Apple has addressed the issue in ...

CVE-2023-41977

The issue was addressed with improved handling of caches. This issue is fixed in macOS Sonoma 14.1, iOS 16.7.2 and iPadOS 16.7.2. Visiting a malicious website may reveal browsing history...

CVE-2023-40447

CVE-2023-40447 is a WebKit-related vulnerability that could allow arbitrary code execution when processing web content. The weakness is addressed in Safari 17.1, iOS 17.1/iPadOS 17.1, watchOS 10.1, macOS Sonoma 14.1, macOS Ventura 13.6.1, iOS 16.7.2/iPadOS 16.7.2, macOS Monterey 12.7.1, and relat...

CVE-2023-40447

The issue was addressed with improved memory handling. This issue is fixed in iOS 17.1 and iPadOS 17.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Sonoma 14.1, Safari 17.1, tvOS 17.1. Processing web content may lead to arbitrary code execution...

CVE-2023-41997

This issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Sonoma 14.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. An attacker with physical access may be able to use Siri to access sensitive user data...

CVE-2023-41997

CVE-2023-41997 affects Apple platforms where the issue is mitigated by code changes that restrict options on a locked device to prevent Siri from leaking data. The public description confirms vulnerable behavior: an attacker with physical access could use Siri to access sensitive user data. The f...

CVE-2023-41997

This issue was addressed by restricting options offered on a locked device. This issue is fixed in macOS Sonoma 14.1, watchOS 10.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. An attacker with physical access may be able to use Siri to access sensitive user data...

CVE-2023-42841

The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.1, iOS 17.1 and iPadOS 17.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Ventura 13.6.1. An app may be able to execute arbitrary code with kernel privileges...

CVE-2023-42841

CVE-2023-42841: The issue is addressed by improved memory handling and is fixed in macOS Sonoma 14.1, iOS 17.1 and iPadOS 17.1, iOS 16.7.2 and iPadOS 16.7.2, and macOS Ventura 13.6.1. Description states: an app may be able to execute arbitrary code with kernel privileges. This is confirmed by con...

CVE-2023-42841

The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.1, iOS 17.1 and iPadOS 17.1, iOS 16.7.2 and iPadOS 16.7.2, macOS Ventura 13.6.1. An app may be able to execute arbitrary code with kernel privileges...

CVE-2023-42857

CVE-2023-42857 describes a privacy issue where private data redaction for log entries was improved. Affected platforms: macOS Sonoma 14.1, iOS 17.1, and iPadOS 17.1. Root cause: leakage of sensitive user data through logs due to insufficient redaction. Impact: an app may be able to access sensiti...

CVE-2023-42857

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.1, iOS 17.1 and iPadOS 17.1. An app may be able to access sensitive user data...

CVE-2023-42857

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.1, iOS 17.1 and iPadOS 17.1. An app may be able to access sensitive user data...

CVE-2023-42846

CVE-2023-42846 relates to a vulnerability in Apple devices where the mDNSResponder component could allow passive tracking of a device by its Wi-Fi MAC address. The issue was mitigated by removing the vulnerable code and is fixed in watchOS 10.1, iOS 16.7.2 / iPadOS 16.7.2, tvOS 17.1, and iOS 17.1...