Apple

macOS

2324 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2023-42891

  • EPSS 0.02%
  • Published 12.12.2023 01:15:11
  • Last modified 21.11.2024 08:23:26

An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.2, macOS Ventura 13.6.3, macOS Monterey 12.7.2. An app may be able to monitor keystrokes without user permission.

5.5

CVE-2023-42894

  • EPSS 0.02%
  • Published 12.12.2023 01:15:11
  • Last modified 21.11.2024 08:23:26

This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Sonoma 14.2, macOS Ventura 13.6.3, macOS Monterey 12.7.2. An app may be able to access information about a user's contacts.

5.5

CVE-2023-42898

  • EPSS 0.03%
  • Published 12.12.2023 01:15:11
  • Last modified 21.11.2024 08:23:27

The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.2, watchOS 10.2, iOS 17.2 and iPadOS 17.2, tvOS 17.2. Processing an image may lead to arbitrary code execution.

7.8

CVE-2023-42899

  • EPSS 0.04%
  • Published 12.12.2023 01:15:11
  • Last modified 21.11.2024 08:23:27

The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.2, iOS 17.2 and iPadOS 17.2, watchOS 10.2, macOS Ventura 13.6.3, tvOS 17.2, iOS 16.7.3 and iPadOS 16.7.3, macOS Monterey 12.7.2. Processing an image may lea...

5.5

CVE-2023-42900

  • EPSS 0.06%
  • Published 12.12.2023 01:15:11
  • Last modified 21.11.2024 08:23:27

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.2. An app may be able to access user-sensitive data.

7.8

CVE-2023-42901

  • EPSS 0.03%
  • Published 12.12.2023 01:15:11
  • Last modified 21.11.2024 08:23:27

Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in macOS Sonoma 14.2. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution.

7.8

CVE-2023-42902

  • EPSS 0.03%
  • Published 12.12.2023 01:15:11
  • Last modified 21.11.2024 08:23:27

Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in macOS Sonoma 14.2. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution.

7.8

CVE-2023-42903

  • EPSS 0.03%
  • Published 12.12.2023 01:15:11
  • Last modified 21.11.2024 08:23:27

Multiple memory corruption issues were addressed with improved input validation. This issue is fixed in macOS Sonoma 14.2. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution.

7.8

CVE-2023-40446

  • EPSS 0.05%
  • Published 12.12.2023 01:15:10
  • Last modified 21.11.2024 08:19:28

The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.7.1, iOS 16.7.2 and iPadOS 16.7.2, iOS 17.1 and iPadOS 17.1. Processing maliciously crafted input may lead to arbitrary code execution in user-installed a...

6.3

CVE-2023-45866

  • EPSS 28.27%
  • Published 08.12.2023 06:15:45
  • Last modified 12.12.2024 14:33:00

Bluetooth HID Hosts in BlueZ may permit an unauthenticated Peripheral role HID Device to initiate and establish an encrypted connection, and accept HID keyboard reports, potentially permitting injection of HID messages when no user interaction has oc...