CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-28180 – Apple Security Advisory 2023-03-27-3
https://notcve.org/view.php?id=CVE-2023-28180
28 Mar 2023 — A user in a privileged network position may be able to cause a denial-of-service. macOS Ventura 13.3 addresses buffer overflow, bypass, code execution, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213670 •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-28181 – Apple Security Advisory 2023-03-27-6
https://notcve.org/view.php?id=CVE-2023-28181
28 Mar 2023 — An app may be able to execute arbitrary code with kernel privileges. iOS 16.4 and iPadOS 16.4 addresses buffer overflow, bypass, code execution, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213670 •
CVSS: 6.8EPSS: 0%CPEs: 7EXPL: 0CVE-2023-28182 – Apple Security Advisory 2023-03-27-3
https://notcve.org/view.php?id=CVE-2023-28182
28 Mar 2023 — A user in a privileged network position may be able to spoof a VPN server that is configured with EAP-only authentication on a device. iOS 16.4 and iPadOS 16.4 addresses buffer overflow, bypass, code execution, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213670 • CWE-287: Improper Authentication •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-28190 – Apple Security Advisory 2023-03-27-3
https://notcve.org/view.php?id=CVE-2023-28190
28 Mar 2023 — An app may be able to access user-sensitive data. macOS Ventura 13.3 addresses buffer overflow, bypass, code execution, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213670 •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-28192 – Apple Security Advisory 2023-03-27-3
https://notcve.org/view.php?id=CVE-2023-28192
28 Mar 2023 — An app may be able to read sensitive location information. macOS Ventura 13.3 addresses buffer overflow, bypass, code execution, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213670 • CWE-276: Incorrect Default Permissions •
CVSS: 3.3EPSS: 0%CPEs: 2EXPL: 0CVE-2023-28194 – Apple Security Advisory 2023-03-27-1
https://notcve.org/view.php?id=CVE-2023-28194
28 Mar 2023 — An app may be able to unexpectedly create a bookmark on the Home Screen. iOS 16.4 and iPadOS 16.4 addresses buffer overflow, bypass, code execution, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213676 •
CVSS: 4.7EPSS: 0%CPEs: 1EXPL: 0CVE-2023-27952 – Apple Security Advisory 2023-03-27-3
https://notcve.org/view.php?id=CVE-2023-27952
28 Mar 2023 — An app may bypass Gatekeeper checks. macOS Sonoma 14.6 addresses buffer overflow, bypass, code execution, information leakage, integer overflow, out of bounds access, out of bounds read, out of bounds write, spoofing, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213670 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2023-28200 – Apple Security Advisory 2023-03-27-3
https://notcve.org/view.php?id=CVE-2023-28200
28 Mar 2023 — An app may be able to disclose kernel memory. macOS Ventura 13.3 addresses buffer overflow, bypass, code execution, integer overflow, out of bounds read, out of bounds write, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213670 • CWE-20: Improper Input Validation CWE-203: Observable Discrepancy •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-25662 – TensorFlow vulnerable to integer overflow in EditDistance
https://notcve.org/view.php?id=CVE-2023-25662
24 Mar 2023 — Versions prior to 2.12.0 and 2.11.1 are vulnerable to integer overflow in EditDistance. • https://github.com/tensorflow/tensorflow/commit/08b8e18643d6dcde00890733b270ff8d9960c56c • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-25667 – TensorFlow vulnerable to segfault when opening multiframe gif
https://notcve.org/view.php?id=CVE-2023-25667
24 Mar 2023 — Prior to versions 2.12.0 and 2.11.1, integer overflow occurs when `2^31 <= num_frames * height * width * channels < 2^32`, for example Full HD screencast of at least 346 frames. • https://github.com/tensorflow/tensorflow/commit/8dc723fcdd1a6127d6c970bd2ecb18b019a1a58d • CWE-190: Integer Overflow or Wraparound •