CVE-2023-35984

CVE-2023-35984 describes a limited out-of-bounds write that can be triggered by an attacker in physical proximity. The issue is fixed in Apple OS updates: tvOS 17, iOS 17, iPadOS 17, watchOS 10, and macOS Sonoma 14. The public description lists the vulnerability impact as a proximity-based write ...

CVE-2023-35984

The issue was addressed with improved checks. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An attacker in physical proximity can cause a limited out of bounds write...

CVE-2023-40410

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to disclose kernel memory...

CVE-2023-40410

CVE-2023-40410 concerns an out-of-bounds read in macOS/iOS/watchOS/tvOS kernel-related handling, disclosed via improved input validation. The issue allows an app to disclose kernel memory and is addressed by updates across Apple platforms: macOS Ventura 13.6, macOS Monterey 12.7, macOS Sonoma 14,...

CVE-2023-41981

The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, iOS 16.7 and iPadOS 16.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations...

CVE-2023-41981

The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, iOS 16.7 and iPadOS 16.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations...

CVE-2023-41981

CVE-2023-41981 affects Apple platforms (macOS/macOS Sonoma 14; Ventura 13.6; iOS 16.7/17; iPadOS 16.7/17; tvOS 17; watchOS 10). Root cause: a memory handling issue in the kernel that may allow bypass of kernel memory mitigations after kernel code execution. Impact per sources: attacker with kerne...

CVE-2023-40391

The issue was addressed with improved memory handling. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, macOS Sonoma 14, Xcode 15. An app may be able to disclose kernel memory...

CVE-2023-40391

CVE-2023-40391 affects Apple platforms with a memory handling issue that may allow an app to disclose kernel memory. Publicly documented fixes apply to tvOS 17, iOS 17, iPadOS 17, and macOS Sonoma 14 (and Xcode 15). No exploitation status is stated in the provided sources. The vulnerability is ad...

CVE-2023-40391

The issue was addressed with improved memory handling. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, macOS Sonoma 14, Xcode 15. An app may be able to disclose kernel memory...

CVE-2023-41980

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to bypass Privacy preferences...

CVE-2023-41980

A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to bypass Privacy preferences...

CVE-2023-41980

CVE-2023-41980 describes a permissions issue that could allow an app to bypass Privacy preferences. Public details confirm impact on Apple platforms including iOS 17, iPadOS 17, and macOS Sonoma 14, with the issue fixed in those releases. The vulnerability is tracked across multiple Apple advisor...

CVE-2023-40427

CVE-2023-40427 affects Apple platforms (macOS, iOS/iPadOS, tvOS, watchOS) where an issue in cache handling allowed an app to read sensitive location information. The root cause is described as improved handling of caches, with fixes applied in macOS Ventura 13.6, macOS Monterey 12.7, macOS Sonoma...

CVE-2023-40431

The issue was addressed with improved memory handling. This issue is fixed in iOS 17 and iPadOS 17. An app may be able to execute arbitrary code with kernel privileges...

CVE-2023-40431

The issue was addressed with improved memory handling. This issue is fixed in iOS 17 and iPadOS 17. An app may be able to execute arbitrary code with kernel privileges...

CVE-2023-40427

The issue was addressed with improved handling of caches. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to read sensitive location information...

CVE-2023-40431

CVE-2023-40431 affects Apple iOS and iPadOS 17 (and earlier reports reference GPUs/kernel memory handling). The issue arises from memory handling weaknesses in components used by Apple devices, enabling an app to execute arbitrary code with kernel privileges. Multiple connected sources (Apple CVE...

CVE-2023-41968

The CVE-2023-41968 issue affects Apple platforms: macOS Ventura 13.6, macOS Monterey 12.7, macOS Sonoma 14, tvOS 17, watchOS 10, iOS 17 and iPadOS 17. Root cause is improved validation of symlinks, enabling an app to read arbitrary files. Remediations are included in the listed OS versions; no ex...

CVE-2023-32396

The CVE-2023-32396 issue affects Apple platforms and is fixed in Xcode 15, tvOS 17, watchOS 10, iOS 17, iPadOS 17, and macOS Sonoma 14. The description states that an app may be able to gain elevated privileges and that the fix involved improved checks. No additional attack vectors or exploit det...