CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2023-42833 – webkitgtk: Processing web content may lead to arbitrary code execution
https://notcve.org/view.php?id=CVE-2023-42833
A correctness issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14, Safari 17, iOS 17 and iPadOS 17. Processing web content may lead to arbitrary code execution. Se solucionó un problema de corrección con controles mejorados. Este problema se solucionó en macOS Sonoma 14, Safari 17, iOS 17 y iPadOS 17. • http://www.openwall.com/lists/oss-security/2024/02/05/8 https://support.apple.com/en-us/HT213938 https://support.apple.com/en-us/HT213940 https://support.apple.com/en-us/HT213941 https://access.redhat.com/security/cve/CVE-2023-42833 https://bugzilla.redhat.com/show_bug.cgi?id=2270146 •
CVSS: 3.3EPSS: 0%CPEs: 4EXPL: 0CVE-2023-38612
https://notcve.org/view.php?id=CVE-2023-38612
The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.7, iOS 16.7 and iPadOS 16.7, iOS 17 and iPadOS 17, macOS Sonoma 14, macOS Ventura 13.6. An app may be able to access protected user data. El problema se solucionó con controles mejorados. Este problema se solucionó en macOS Monterey 12.7, iOS 16.7 y iPadOS 16.7, iOS 17 y iPadOS 17, macOS Sonoma 14, macOS Ventura 13.6. • https://support.apple.com/en-us/HT213927 https://support.apple.com/en-us/HT213931 https://support.apple.com/en-us/HT213932 https://support.apple.com/en-us/HT213938 https://support.apple.com/en-us/HT213940 •
CVSS: 7.0EPSS: 0%CPEs: 3EXPL: 0CVE-2023-42832
https://notcve.org/view.php?id=CVE-2023-42832
A race condition was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.7.9, macOS Monterey 12.6.8, macOS Ventura 13.5. An app may be able to gain root privileges. Se solucionó una condición de ejecución con un mejor manejo del estado. Este problema se solucionó en macOS Big Sur 11.7.9, macOS Monterey 12.6.8, macOS Ventura 13.5. • https://support.apple.com/en-us/HT213843 https://support.apple.com/en-us/HT213844 https://support.apple.com/en-us/HT213845 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 3.3EPSS: 0%CPEs: 3EXPL: 0CVE-2023-40439
https://notcve.org/view.php?id=CVE-2023-40439
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. An app may be able to read sensitive location information. Se solucionó un problema de privacidad mejorando la redacción de datos privados para las entradas de registro. Este problema se solucionó en iOS 16.6 y iPadOS 16.6, macOS Ventura 13.5. • https://support.apple.com/en-us/HT213841 https://support.apple.com/en-us/HT213843 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-42828
https://notcve.org/view.php?id=CVE-2023-42828
This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Ventura 13.5. An app may be able to gain root privileges. Este problema se solucionó eliminando el código vulnerable. Este problema se solucionó en macOS Ventura 13.5. • https://support.apple.com/en-us/HT213843 •