|
331
|
4.3
-
|
MEDIUM
Network
|
A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3…
|
CWE-416
Use After Free
|
CVE-2024-40776
|
cpe:2.3:o:apple:iphone_os:*:*
|
17.0
|
|
|
17.6 16.7.9
|
2024-11-21 18:31
2024-07-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
332
|
7.1
-
|
HIGH
Local
|
A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, macOS…
|
NVD-CWE-noinfo
|
CVE-2024-40774
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
17.6
|
2024-11-21 18:31
2024-07-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
333
|
5.5
-
|
MEDIUM
Local
|
This issue was addressed with a new entitlement. This issue is fixed in macOS Sonoma 14.5, watchOS 10.5, visionOS 1.2, tvOS 17.5, iOS 17.5 and iPadOS 17.5. An app may be able to access user-sensitive…
|
NVD-CWE-noinfo
|
CVE-2024-27884
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
17.5
|
2024-11-21 18:05
2024-07-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
334
|
5.5
-
|
MEDIUM
Local
|
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, …
|
CWE-787
Out-of-bounds Write
|
CVE-2024-27873
|
cpe:2.3:o:apple:iphone_os:*:*
|
17.0
|
|
|
17.6 16.7.9
|
2024-11-21 18:05
2024-07-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
335
|
5.5
-
|
MEDIUM
Local
|
A path handling issue was addressed with improved validation. This issue is fixed in macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6. An app may be able to access protected user data.
|
CWE-22
Path Traversal
|
CVE-2024-27871
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
17.6
|
2024-11-21 18:05
2024-07-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
336
|
5.5
-
|
MEDIUM
Local
|
An information disclosure issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonom…
|
NVD-CWE-noinfo
|
CVE-2024-27863
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
17.6
|
2024-11-21 18:05
2024-07-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
337
|
3.3
-
|
LOW
Local
|
A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10. An app may be able to read sensitive location information.
|
NVD-CWE-noinfo
|
CVE-2023-42957
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
17.0
|
2024-11-21 17:23
2024-07-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
338
|
3.3
-
|
LOW
Local
|
This issue was addressed with improved data protection. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17. An app may be able to access edited photos saved to a tempor…
|
NVD-CWE-noinfo
|
CVE-2023-42949
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
17.0
|
2024-11-21 17:23
2024-07-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
339
|
3.3
-
|
LOW
Local
|
The issue was addressed with improved restriction of data container access. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to access Notes attachments.
|
NVD-CWE-noinfo
|
CVE-2023-42925
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
17.0
|
2024-11-21 17:23
2024-07-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
340
|
8.8
-
|
HIGH
Local
|
This issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.4, macOS Big Sur 11.7.5, macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. A sandboxed process may be able to cir…
|
NVD-CWE-noinfo
|
CVE-2023-40398
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
16.4
|
2024-11-21 17:19
2024-07-30
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|