|
411
|
5.5
-
|
MEDIUM
Local
|
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Monterey 12.6.8, macOS Ventura 13.5. An app may be able to f…
|
NVD-CWE-noinfo
|
CVE-2023-42831
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
15.7.8
|
2024-11-21 17:23
2024-01-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
412
|
3.3
-
|
LOW
Local
|
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. An app may be able to read sensitive location …
|
NVD-CWE-noinfo
|
CVE-2023-42830
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
16.4
|
2024-11-21 17:23
2024-01-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
413
|
7.8
-
|
HIGH
Local
|
A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17. An app may be able to execute arbitrary code with kernel privileges.
|
CWE-416
Use After Free
|
CVE-2023-41974
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
17.0
|
2024-11-21 17:22
2024-01-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
414
|
7.8
-
|
HIGH
Local
|
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.7.5, macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6…
|
CWE-843
Type Confusion
|
CVE-2023-41075
|
cpe:2.3:o:apple:iphone_os:*:*
|
16.0 15.0
|
|
|
16.4 15.7.4
|
2024-11-21 17:20
2024-01-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
415
|
5.5
-
|
MEDIUM
Local
|
This issue was addressed by improving Face ID anti-spoofing models. This issue is fixed in iOS 17 and iPadOS 17. A 3D model constructed to look like the enrolled user may authenticate via Face ID.
|
NVD-CWE-noinfo
|
CVE-2023-41069
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
17.0
|
2024-11-21 17:20
2024-01-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
416
|
8.8
-
|
HIGH
Network
|
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14, iOS 17 and iPadOS 17. A remote user may be able to cause kernel code execution.
|
CWE-843
Type Confusion
|
CVE-2023-41060
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
17.0
|
2024-11-21 17:20
2024-01-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
417
|
2.4
-
|
LOW
Physics
|
This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 17 and iPadOS 17. A person with physical access to a device may be able to use VoiceOver to acces…
|
NVD-CWE-noinfo
|
CVE-2023-40529
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
17.0
|
2024-11-21 17:19
2024-01-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
418
|
3.3
-
|
LOW
Local
|
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. An app may be able to read sensitive location …
|
NVD-CWE-noinfo
|
CVE-2023-40439
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
16.6
|
2024-11-21 17:19
2024-01-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
419
|
5.5
-
|
MEDIUM
Local
|
An issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sonoma 14, iOS 16.7 and iPadOS 16.7. An app may be able to access edited photos saved to a temporary dir…
|
NVD-CWE-noinfo
|
CVE-2023-40438
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
16.7
|
2024-11-21 17:19
2024-01-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
420
|
5.5
-
|
MEDIUM
Local
|
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. An app may be able to read sensitive location …
|
NVD-CWE-noinfo
|
CVE-2023-40437
|
cpe:2.3:o:apple:iphone_os:*:*
|
|
|
|
16.6
|
2024-11-21 17:19
2024-01-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|