CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 0CVE-2023-38425 – Apple Security Advisory 2023-07-24-2
https://notcve.org/view.php?id=CVE-2023-38425
26 Jul 2023 — The issue was addressed with improved memory handling. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. An app may be able to execute arbitrary code with kernel privileges. macOS Ventura 13.5 addresses bypass, code execution, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213841 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-38564 – Apple Security Advisory 2023-07-24-4
https://notcve.org/view.php?id=CVE-2023-38564
26 Jul 2023 — The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.5. An app may be able to modify protected parts of the file system. macOS Ventura 13.5 addresses bypass, code execution, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213843 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2023-38580 – Apple Security Advisory 2023-07-24-8
https://notcve.org/view.php?id=CVE-2023-38580
26 Jul 2023 — The issue was addressed with improved memory handling. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5, watchOS 9.6. An app may be able to execute arbitrary code with kernel privileges. macOS Ventura 13.5 addresses bypass, code execution, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213841 •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-38602 – Apple Security Advisory 2023-07-24-6
https://notcve.org/view.php?id=CVE-2023-38602
26 Jul 2023 — A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Monterey 12.6.8, macOS Ventura 13.5, macOS Big Sur 11.7.9. An app may be able to modify protected parts of the file system. macOS Ventura 13.5 addresses bypass, code execution, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213843 •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2023-38603 – Apple Security Advisory 2023-07-24-2
https://notcve.org/view.php?id=CVE-2023-38603
26 Jul 2023 — The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. A remote user may be able to cause a denial-of-service. macOS Ventura 13.5 addresses bypass, code execution, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213841 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-38608 – Apple Security Advisory 2023-07-24-4
https://notcve.org/view.php?id=CVE-2023-38608
26 Jul 2023 — The issue was addressed with additional permissions checks. This issue is fixed in macOS Ventura 13.5. An app may be able to access user-sensitive data. macOS Ventura 13.5 addresses bypass, code execution, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213843 •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-35983 – Apple Security Advisory 2023-07-24-6
https://notcve.org/view.php?id=CVE-2023-35983
26 Jul 2023 — This issue was addressed with improved data protection. This issue is fixed in macOS Monterey 12.6.8, macOS Ventura 13.5, macOS Big Sur 11.7.9. An app may be able to modify protected parts of the file system. macOS Ventura 13.5 addresses bypass, code execution, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213843 • CWE-863: Incorrect Authorization •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-36854 – Apple Security Advisory 2023-07-24-6
https://notcve.org/view.php?id=CVE-2023-36854
26 Jul 2023 — The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.8, macOS Ventura 13.5, macOS Big Sur 11.7.9. Processing a file may lead to unexpected app termination or arbitrary code execution. macOS Ventura 13.5 addresses bypass, code execution, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213843 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-36862 – Apple Security Advisory 2023-07-24-4
https://notcve.org/view.php?id=CVE-2023-36862
26 Jul 2023 — A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Ventura 13.5. An app may be able to determine a user’s current location. macOS Ventura 13.5 addresses bypass, code execution, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213843 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-38410 – Apple Security Advisory 2023-07-24-2
https://notcve.org/view.php?id=CVE-2023-38410
26 Jul 2023 — The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. A user may be able to elevate privileges. macOS Ventura 13.5 addresses bypass, code execution, out of bounds read, and use-after-free vulnerabilities. • https://support.apple.com/en-us/HT213841 • CWE-276: Incorrect Default Permissions •