Lucene search
K

8349 matches found

Cvelist
Cvelist
added 2023/04/10 12:0 a.m.30 views

CVE-2022-46716

A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2. Private Relay functionality did not match system settings...

7.4AI score0.00491EPSS
Exploits0References2
Apple
Apple
added 2023/04/10 12:0 a.m.52 views

About the security content of iOS 15.7.5 and iPadOS 15.7.5

About the security content of iOS 15.7.5 and iPadOS 15.7.5 This document describes the security content of iOS 15.7.5 and iPadOS 15.7.5. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...

8.8CVSS9.7AI score0.27076EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2023/04/10 12:0 a.m.226 views

CVE-2023-28206

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1, iOS 15.7.5 and iPadOS 15.7.5, macOS Big Sur 11.7.6. An app may be able to execute arbitrary code with kernel privileges. App...

8.1AI score0.24513EPSS
Exploits0References5
CVE
CVE
added 2023/04/10 12:0 a.m.827 views

CVE-2023-28205

CVE-2023-28205 is a use-after-free vulnerability in WebKitGTK/WebKitGTK4 that can be triggered by processing malicious web content, leading to arbitrary code execution. The initial CVE entry notes a memory-management fix in Safari, iOS, iPadOS and macOS, with active exploitation reports. Connecte...

8.8CVSS8.8AI score0.27076EPSS
In wildExploits0References5Affected Software4
CVE
CVE
added 2023/04/10 12:0 a.m.827 views

CVE-2023-28206

CVE-2023-28206 is an IOSurfaceAccelerator out-of-bounds write vulnerability in Apple’s iOS/macOS stack. The connected analysis documents an in-the-wild exploit chain targeting Safari IPC to escalate to GPU-process code execution, including a sequence of heap grooming and IPC misuse that yields ar...

8.6CVSS8.2AI score0.24513EPSS
In wildExploits0References6Affected Software3
CVE
CVE
added 2023/04/10 12:0 a.m.79 views

CVE-2022-46717

Apple CVE-2022-46717 affects iOS 16.2 and iPadOS 16.2. A logic issue in accessibility features could allow a user with physical access to a locked Apple Watch to view photos. Root cause described as a logic issue with improved restrictions; remediation is patching in iOS 16.2 and iPadOS 16.2. Con...

2.4CVSS2.1AI score0.00258EPSS
Exploits0References2Affected Software2
ATTACKERKB
ATTACKERKB
added 2023/04/10 12:0 a.m.120 views

CVE-2023-28205

A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report...

8.8CVSS8.6AI score0.27076EPSS
In wildExploits0References17
ATTACKERKB
ATTACKERKB
added 2023/04/10 12:0 a.m.40 views

CVE-2023-28206

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1, iOS 15.7.5 and iPadOS 15.7.5, macOS Big Sur 11.7.6. An app may be able to execute arbitrary code with kernel privileges. App...

8.6CVSS8.1AI score0.24513EPSS
In wildExploits0References11
CVE
CVE
added 2023/04/10 12:0 a.m.85 views

CVE-2022-46703

Summary : CVE-2022-46703 is an Apple security vulnerability described as a logic issue that could allow an app to read sensitive location information. Affected products/versions include iOS and iPadOS prior to the fixed releases, and macOS Ventura prior to 13.1; per sources, fixes are in iOS 15.7...

5.5CVSS4.1AI score0.00221EPSS
Exploits0References5Affected Software3
CVE
CVE
added 2023/04/10 12:0 a.m.90 views

CVE-2022-46716

CVE-2022-46716 describes a logic issue in Apple’s Private Relay state management where Private Relay functionality did not match system settings. Affected products include macOS Ventura (fixed in 13.1) and iOS/iPadOS (fixed in 16.2). The Connected documents confirm this mismatch and provide the r...

7.5CVSS6.2AI score0.00491EPSS
Exploits0References2Affected Software3
Vulnrichment
Vulnrichment
added 2023/04/10 12:0 a.m.4 views

CVE-2022-46717

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16.2 and iPadOS 16.2. A user with physical access to a locked Apple Watch may be able to view user photos via accessibility features...

2AI score0.00258EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/04/10 12:0 a.m.28 views

CVE-2022-46717

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16.2 and iPadOS 16.2. A user with physical access to a locked Apple Watch may be able to view user photos via accessibility features...

4.4AI score0.00258EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/04/10 12:0 a.m.26 views

CVE-2022-46703

A logic issue was addressed with improved restrictions. This issue is fixed in iOS 15.7.2 and iPadOS 15.7.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2. An app may be able to read sensitive location information...

5.9AI score0.00221EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2023/04/10 12:0 a.m.34 views

CVE-2023-28205

A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report...

8.8CVSS8.6AI score0.27076EPSS
Exploits0
CISA KEV Catalog
CISA KEV Catalog
added 2023/04/10 12:0 a.m.67 views

Apple iOS, iPadOS, and macOS IOSurfaceAccelerator Out-of-Bounds Write Vulnerability

Apple iOS, iPadOS, and macOS IOSurfaceAccelerator contain an out-of-bounds write vulnerability that allows an app to execute code with kernel privileges...

8.6CVSS8.4AI score0.24513EPSS
In wildExploits0
CISA KEV Catalog
CISA KEV Catalog
added 2023/04/10 12:0 a.m.131 views

Apple Multiple Products WebKit Use-After-Free Vulnerability

Apple iOS, iPadOS, macOS, and Safari WebKit contain a use-after-free vulnerability that leads to code execution when processing maliciously crafted web content. This vulnerability could impact HTML parsers that use WebKit, including but not limited to Apple Safari and non-Apple products which rel...

8.8CVSS8.9AI score0.27076EPSS
In wildExploits0
Positive Technologies
Positive Technologies
added 2023/04/07 12:0 a.m.5 views

PT-2023-2613

Name of the Vulnerable Software and Affected Versions Safari versions prior to 16.4.1 iOS versions prior to 15.7.5 and prior to 16.4.1 iPadOS versions prior to 15.7.5 and prior to 16.4.1 macOS Ventura versions prior to 13.3.1 Description A use after free issue was addressed with improved memory...

10CVSS7.5AI score0.27076EPSS
Exploits1References125
Apple
Apple
added 2023/04/07 12:0 a.m.71 views

About the security content of iOS 16.4.1 and iPadOS 16.4.1

About the security content of iOS 16.4.1 and iPadOS 16.4.1 This document describes the security content of iOS 16.4.1 and iPadOS 16.4.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...

8.8CVSS9.8AI score0.27076EPSS
Exploits0References1Affected Software2
Malwarebytes
Malwarebytes
added 2023/03/30 6:0 a.m.42 views

Update now! Apple fixes actively exploited vulnerability and introduces new features

Apple has released security updates for several products. Most notably one of the updates fixes an actively exploited vulnerability in the WebKit component of iOS 15.7.4 and iPadOS 15.7.4 that was fixed earlier in macOS Ventura 13.2.1, iOS 16.3.1, iPadOS 16.3.1, and Safari 16.3. You can find the...

9.1AI score0.09502EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/03/30 12:0 a.m.49 views

SUSE SLES12 Security Update : webkit2gtk3 (SUSE-SU-2023:1681-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:1681-1 advisory. - A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13, iOS 16.1 and iPadO...

8.8CVSS8.8AI score0.09502EPSS
Exploits0References9
Rows per page
Query Builder