CVE-2023-32366
https://notcve.org/view.php?id=CVE-2023-32366
Processing a font file may lead to arbitrary code execution. • https://support.apple.com/en-us/HT213670 https://support.apple.com/en-us/HT213673 https://support.apple.com/en-us/HT213675 https://support.apple.com/en-us/HT213676 https://support.apple.com/en-us/HT213677 • CWE-787: Out-of-bounds Write •
CVE-2023-42866
https://notcve.org/view.php?id=CVE-2023-42866
Processing web content may lead to arbitrary code execution. • https://support.apple.com/en-us/HT213841 https://support.apple.com/en-us/HT213843 https://support.apple.com/en-us/HT213846 https://support.apple.com/en-us/HT213847 https://support.apple.com/en-us/HT213848 •
CVE-2023-32401
https://notcve.org/view.php?id=CVE-2023-32401
Parsing an office document may lead to an unexpected app termination or arbitrary code execution. • https://support.apple.com/en-us/HT213758 https://support.apple.com/en-us/HT213759 https://support.apple.com/en-us/HT213760 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVE-2023-49715
https://notcve.org/view.php?id=CVE-2023-49715
A specially crafted HTTP request can lead to arbitrary code execution when chained with an LFI vulnerability. • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1885 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVE-2023-47862
https://notcve.org/view.php?id=CVE-2023-47862
A specially crafted HTTP request can lead to arbitrary code execution. • https://talosintelligence.com/vulnerability_reports/TALOS-2023-1886 • CWE-73: External Control of File Name or Path •