CVSS: 10.0EPSS: 0%CPEs: 5EXPL: 0CVE-2023-37285
https://notcve.org/view.php?id=CVE-2023-37285
28 Jul 2023 — An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, macOS Big Sur 11.7.9, macOS Monterey 12.6.8, macOS Ventura 13.5. An app may be able to execute arbitrary code with kernel privileges. • https://support.apple.com/en-us/HT213842 • CWE-125: Out-of-bounds Read •
CVSS: 10.0EPSS: 0%CPEs: 9EXPL: 0CVE-2023-38598
https://notcve.org/view.php?id=CVE-2023-38598
28 Jul 2023 — A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 9.6, macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Monterey 12.6.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. An app may be able to execute arbitrary code with kernel privileges. • https://support.apple.com/en-us/HT213841 • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 9EXPL: 0CVE-2023-38604
https://notcve.org/view.php?id=CVE-2023-38604
28 Jul 2023 — An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in watchOS 9.6, macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Monterey 12.6.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. An app may be able to execute arbitrary code with kernel privileges. • https://support.apple.com/en-us/HT213841 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 1CVE-2023-38571
https://notcve.org/view.php?id=CVE-2023-38571
28 Jul 2023 — This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Big Sur 11.7.9, macOS Monterey 12.6.8, macOS Ventura 13.5. An app may be able to bypass Privacy preferences. • https://github.com/gergelykalman/CVE-2023-38571-a-macOS-TCC-bypass-in-Music-and-TV •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-32444
https://notcve.org/view.php?id=CVE-2023-32444
28 Jul 2023 — A logic issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.7.9, macOS Monterey 12.6.8, macOS Ventura 13.5. A sandboxed process may be able to circumvent sandbox restrictions. • https://support.apple.com/en-us/HT213843 •
CVSS: 10.0EPSS: 1%CPEs: 9EXPL: 0CVE-2023-38590
https://notcve.org/view.php?id=CVE-2023-38590
28 Jul 2023 — A buffer overflow issue was addressed with improved memory handling. This issue is fixed in watchOS 9.6, macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Monterey 12.6.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. A remote user may be able to cause unexpected system termination or corrupt kernel memory. • https://support.apple.com/en-us/HT213841 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-38601
https://notcve.org/view.php?id=CVE-2023-38601
28 Jul 2023 — This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Big Sur 11.7.9, macOS Monterey 12.6.8, macOS Ventura 13.5. An app may be able to modify protected parts of the file system. • https://support.apple.com/en-us/HT213843 •
CVSS: 10.0EPSS: 0%CPEs: 8EXPL: 0CVE-2023-34425
https://notcve.org/view.php?id=CVE-2023-34425
28 Jul 2023 — The issue was addressed with improved memory handling. This issue is fixed in watchOS 9.6, macOS Monterey 12.6.8, iOS 15.7.8 and iPadOS 15.7.8, macOS Big Sur 11.7.9, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. An app may be able to execute arbitrary code with kernel privileges. • https://support.apple.com/en-us/HT213841 •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2023-32381 – Apple Security Advisory 2023-07-24-6
https://notcve.org/view.php?id=CVE-2023-32381
26 Jul 2023 — A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.6.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to execute arbitrary code with kernel privileges. macOS Ventura 13.5 addresses bypass, code execution, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213841 • CWE-416: Use After Free •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2023-32441 – Apple Security Advisory 2023-07-24-6
https://notcve.org/view.php?id=CVE-2023-32441
26 Jul 2023 — The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.8, iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to execute arbitrary code with kernel privileges. macOS Ventura 13.5 addresses bypass, code execution, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213841 •