![]() ![]() Impact: A user may be able to read information belonging to another userĭescription: The issue was addressed with additional permissions checks.ĬVE-2023-38608: Yiğit Can YILMAZ Kirin and Yishu Wang ![]() ![]() Impact: Processing a file may lead to a denial-of-service or potentially disclose memory contentsĭescription: An out-of-bounds read was addressed with improved input validation.ĬVE-2023-32429: Wenchao Li and Xiaolong Bai of Hangzhou Orange Shield Information Technology Co., Ltd. Impact: A shortcut may be able to modify sensitive Shortcuts app settingsĭescription: An access issue was addressed with improved access restrictions. Impact: An app may be able to access user-sensitive dataĬVE-2023-38259: Mickey Jin for: macOS VenturaĬVE-2023-38564: Mickey Jin for: macOS Venturaĭescription: A permissions issue was addressed with additional restrictions.ĬVE-2023-38602: Arsenii Kostromin (0x3c3e) Impact: An app may be able to bypass certain Privacy preferencesĭescription: An injection issue was addressed with improved input validation. Impact: An app may be able to bypass Privacy preferencesĭescription: This issue was addressed with improved validation of symlinks.ĬVE-2023-38571: Gergely Kalman added July 27, 2023ĭescription: This issue was addressed by removing the vulnerable code.ĬVE-2023-38601: Csaba Fitzl of Offensive Securityĭescription: A logic issue was addressed with improved validation.ĬVE-2023-32444: Mickey Jin added July 27, 2023 Impact: Processing a 3D model may result in disclosure of process memoryĬVE-2023-38258: Mickey Jin Mickey Jin and Michael DePlante of Trend Micro Zero Day Initiative Impact: An app may be able to cause a denial-of-serviceĭescription: A logic issue was addressed with improved checks. Impact: An app may be able to gain root privilegesĭescription: A path handling issue was addressed with improved validation.ĬVE-2023-38565: Zhipeng Huo of Tencent Security Xuanwu Lab () Impact: A remote user may be able to cause a denial-of-service Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7.1.ĭescription: This issue was addressed with improved state management.ĬVE-2023-38606: Valentin Pashkov, Mikhail Vinogradov, Georgy Kucherin Leonid Bezvershenko and Boris Larin of Kaspersky Impact: An app may be able to modify sensitive kernel state. Impact: A user may be able to elevate privileges Ltd.ĬVE-2023-35993: Kaitao Xie and Xiaolong Bai of Alibaba Group Ltd.ĬVE-2023-32441: Peter Nguyễn Vũ Hoàng of STAR Labs SG Pte. Impact: A remote user may be able to cause unexpected system termination or corrupt kernel memoryĭescription: A buffer overflow issue was addressed with improved memory handling.ĭescription: A use-after-free issue was addressed with improved memory management.ĬVE-2023-38598: Mohamed GHANNAM added July 27, 2023ĭescription: An integer overflow was addressed with improved input validation.ĭescription: An out-of-bounds read was addressed with improved bounds checking.ĬVE-2023-37285: Arsenii Kostromin (0x3c3e)ĭescription: An out-of-bounds write issue was addressed with improved input validation.ĬVE-2023-32734: Pan ZhenPeng of STAR Labs SG Pte. Impact: Processing a file may lead to unexpected app termination or arbitrary code executionĭescription: The issue was addressed with improved checks.ĬVE-2023-32418: Bool of YunShangHuaAn(云上华安)ĬVE-2023-36854: Bool of YunShangHuaAn(云上华安) Impact: An app may be able to read sensitive location informationĬVE-2023-32416: Wojciech Regula of SecuRing (wojciechregula.blog) ![]() Impact: A user in a privileged network position may be able to leak sensitive informationĭescription: A logic issue was addressed with improved state management.ĭescription: Multiple issues were addressed by updating curl. Impact: An app may be able to modify protected parts of the file systemĭescription: This issue was addressed with improved data protection.ĬVE-2023-35983: Mickey Jin for: macOS Ventura Impact: A sandboxed process may be able to circumvent sandbox restrictionsĭescription: A logic issue was addressed with improved restrictions.ĬVE-2023-32364: Gergely Kalman for: macOS Ventura Impact: An app may be able to determine a user’s current locationĭescription: A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions.ĬVE-2023-36862: Mickey Jin for: macOS Ventura Impact: An app may be able to execute arbitrary code with kernel privilegesĭescription: The issue was addressed with improved memory handling.ĬVE-2023-34425: pattern-f of Ant Security Light-Year LabĬVE-2023-38580: Mohamed GHANNAM for: macOS Ventura ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |