CVE-2023-41070

A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.6, iOS 16.7 and iPadOS 16.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to access sensitive data logged when a user shares a link...

CVE-2023-41070

CVE-2023-41070 is an Apple vulnerability: a logic issue in the sharing flow could allow an app to access sensitive data logged when a user shares a link. Affected products include macOS (Ventura 13.6 and Sonoma 14), iOS (16.7 and 17), iPadOS (16.7 and 17), and watchOS (10). The issue is fixed in ...

CVE-2023-41071

CVE-2023-41071 is a use-after-free vulnerability in Apple’s kernel-related components that can allow an app to execute arbitrary code with kernel privileges. Affected products include tvOS 17, iOS 17 and iPadOS 17, watchOS 10, and macOS Ventura 13.6. The issue is addressed through improved memory...

CVE-2023-41174

The issue was addressed with improved memory handling. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10. An app may be able to execute arbitrary code with kernel privileges...

CVE-2023-41174

CVE-2023-41174 affects Apple platforms: tvOS 17, iOS 17, iPadOS 17, and watchOS 10. The issue stems from improved memory handling and may allow an app to execute arbitrary code with kernel privileges. Affected components are tied to memory handling in the operating systems, leading to potential k...

CVE-2023-40456

CVE-2023-40456 affects Apple platforms (tvOS, iOS, iPadOS, watchOS) where an app may access edited photos saved to a temporary directory due to inadequate access checks. Root cause: insufficient checks in Photos Storage. Impact: potential exposure of edited photos in a temp directory. Mitigation:...

CVE-2023-41986

CVE-2023-41986 affects Apple platforms; an app may be able to modify protected parts of the file system. The issue is fixed in iOS 17, iPadOS 17, and macOS Sonoma 14. Attack vector is local with user interaction required; no exploitation status is provided beyond the fix in these OS versions. Rem...

CVE-2023-41986

The issue was addressed with improved checks. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to modify protected parts of the file system...

CVE-2023-41986

The issue was addressed with improved checks. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to modify protected parts of the file system...

CVE-2023-40417

A window management issue was addressed with improved state management. This issue is fixed in Safari 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. Visiting a website that frames malicious content may lead to UI spoofing...

CVE-2023-40417

A window management issue was addressed with improved state management. This issue is fixed in Safari 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. Visiting a website that frames malicious content may lead to UI spoofing...

CVE-2023-40417

CVE-2023-40417 affects Safari/WebKit window management when visiting framed content, enabling potential UI spoofing. Root cause: improved state management fixes a window-management issue. Impact per sources: UI spoofing risk if a website frames malicious content. Affected products/versions: Safar...

PT-2023-8419 · Apple · Ipados +4

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 14 Safari versions prior to 17 iOS versions prior to 17 iPadOS versions prior to 17 Description: The issue is related to a lack of protection for service data in the WebKit module for displaying web pages in macOS, iOS...

Apple Security Update: iOS 17.0.2 and iPadOS 17.0.2

Apple recommends to install security update iOS 17.0.2 and iPadOS 17.0.2 on devices iPhone XS and later, iPad Pro 12.9-inch 2nd generation and later, iPad Pro 10.5-inch, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later, iPad 6th generation and later, and iPad mini 5th...

PT-2023-27443 · Apple · Macos Sonoma +5

Name of the Vulnerable Software and Affected Versions: Safari versions prior to 17 iOS versions prior to 17 iPadOS versions prior to 17 watchOS versions prior to 10 macOS Sonoma versions prior to 14 Description: A window management issue was addressed with improved state management. Visiting a...

Apple iOS and iPadOS Security Vulnerabilities

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS 17 and iPadOS 17, which arises from an application that may be able to read...

PT-2023-8335 · Apple · Ios +2

Name of the Vulnerable Software and Affected Versions: macOS versions prior to Sonoma 14 iOS versions prior to 17 iPadOS versions prior to 17 Description: The issue is related to insufficient access restrictions in the Music component of macOS, iPadOS, and iOS operating systems. Exploitation of...

PT-2023-27447 · Apple · Ios +1

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 17 iPadOS versions prior to 17 Description: The issue allows an app to potentially access sensitive user data due to improper handling of caches. This has been addressed with improved cache handling. Recommendations: For...

PT-2023-27456 · Apple · Ios +2

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 17 iPadOS versions prior to 17 Description: The issue was addressed with improved checks. An app may be able to gain root privileges. No user interaction is necessary for this issue to occur. Recommendations: For iOS...

PT-2023-27451 · Apple · Ios +2

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 17 iPadOS versions prior to 17 macOS versions prior to Sonoma 14 Description: A configuration issue was addressed with additional restrictions. This issue may allow an app to access a user's Photos Library...