CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-40407 – Apple Security Advisory 09-26-2023-2
https://notcve.org/view.php?id=CVE-2023-40407
26 Sep 2023 — The issue was addressed with improved bounds checks. This issue is fixed in macOS Sonoma 14. A remote attacker may be able to cause a denial-of-service. El problema se solucionó con comprobaciones de límites mejoradas. Este problema se solucionó en macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/3 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-40450 – Apple Security Advisory 09-26-2023-2
https://notcve.org/view.php?id=CVE-2023-40450
26 Sep 2023 — The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14. An app may bypass Gatekeeper checks. El problema se solucionó con controles mejorados. Este problema se solucionó en macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/3 •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-41980 – Apple Security Advisory 09-26-2023-7
https://notcve.org/view.php?id=CVE-2023-41980
26 Sep 2023 — A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to bypass Privacy preferences. Se solucionó un problema de permisos con restricciones adicionales. Este problema se solucionó en iOS 17 y iPadOS 17, macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/3 •
CVSS: 3.3EPSS: 0%CPEs: 6EXPL: 0CVE-2023-40427 – Apple Security Advisory 09-26-2023-8
https://notcve.org/view.php?id=CVE-2023-40427
26 Sep 2023 — The issue was addressed with improved handling of caches. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to read sensitive location information. El problema se solucionó mejorando el manejo de los cachés. Este problema se solucionó en macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 y iPadOS 17, macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/10 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2023-32396 – Apple Security Advisory 09-26-2023-8
https://notcve.org/view.php?id=CVE-2023-32396
26 Sep 2023 — This issue was addressed with improved checks. This issue is fixed in Xcode 15, tvOS 17, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to gain elevated privileges. Este problema se solucionó con controles mejorados. Este problema se solucionó en Xcode 15, tvOS 17, watchOS 10, iOS 17 y iPadOS 17, macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/10 •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2023-41968 – Apple Security Advisory 09-26-2023-8
https://notcve.org/view.php?id=CVE-2023-41968
26 Sep 2023 — This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to read arbitrary files. Este problema se solucionó con una validación mejorada de los enlaces simbólicos. Este problema se solucionó en macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 y iPadOS 17, macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/10 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-23495 – Apple Security Advisory 09-26-2023-2
https://notcve.org/view.php?id=CVE-2023-23495
26 Sep 2023 — A permissions issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Sonoma 14. An app may be able to access sensitive user data. Se solucionó un problema de permisos con una redacción mejorada de la información sensible. Este problema se solucionó en macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/3 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-40441 – Apple Security Advisory 09-26-2023-7
https://notcve.org/view.php?id=CVE-2023-40441
26 Sep 2023 — A resource exhaustion issue was addressed with improved input validation. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. Processing web content may lead to a denial-of-service. Se abordó un problema de agotamiento de recursos con una validación de entrada mejorada. Este problema se solucionó en iOS 17 y iPadOS 17, macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/3 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 10.0EPSS: 1%CPEs: 5EXPL: 0CVE-2023-40400 – Apple Security Advisory 09-26-2023-8
https://notcve.org/view.php?id=CVE-2023-40400
26 Sep 2023 — This issue was addressed with improved checks. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. A remote user may cause an unexpected app termination or arbitrary code execution. Este problema se solucionó con controles mejorados. Este problema se solucionó en tvOS 17, iOS 17 y iPadOS 17, watchOS 10, macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/10 •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2023-38596 – Apple Security Advisory 09-26-2023-8
https://notcve.org/view.php?id=CVE-2023-38596
26 Sep 2023 — The issue was addressed with improved handling of protocols. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may fail to enforce App Transport Security. El problema se abordó mejorando el manejo de los protocolos. Este problema se solucionó en tvOS 17, iOS 17 y iPadOS 17, watchOS 10, macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/10 •