CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 0CVE-2022-32897
https://notcve.org/view.php?id=CVE-2022-32897
A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Monterey 12.5. Processing a maliciously crafted tiff file may lead to arbitrary code execution. Se solucionó un problema de corrupción de memoria con una validación mejorada. Este problema se solucionó en macOS Monterey 12.5. • https://support.apple.com/en-us/HT213345 • CWE-94: Improper Control of Generation of Code ('Code Injection') CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-27792
https://notcve.org/view.php?id=CVE-2024-27792
This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Sonoma 14.4. An app may be able to access user-sensitive data. Este problema se solucionó agregando una solicitud adicional de consentimiento del usuario. Este problema se solucionó en macOS Sonoma 14.4. • https://support.apple.com/en-us/HT214084 •
CVSS: 8.6EPSS: 0%CPEs: 3EXPL: 0CVE-2024-23299
https://notcve.org/view.php?id=CVE-2024-23299
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4, macOS Ventura 13.6.5, macOS Monterey 12.7.4. An app may be able to break out of its sandbox. El problema se solucionó con controles mejorados. Este problema se solucionó en macOS Sonoma 14.4, macOS Ventura 13.6.5, macOS Monterey 12.7.4. • https://support.apple.com/en-us/HT214083 https://support.apple.com/en-us/HT214084 https://support.apple.com/en-us/HT214085 • CWE-250: Execution with Unnecessary Privileges •
CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2023-42936
https://notcve.org/view.php?id=CVE-2023-42936
This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Monterey 12.7.2, macOS Ventura 13.6.3, iOS 17.2 and iPadOS 17.2, tvOS 17.2, watchOS 10.2, macOS Sonoma 14.2. An app may be able to access user-sensitive data. Este problema se solucionó mejorando la redacción de información confidencial. Este problema se solucionó en macOS Monterey 12.7.2, macOS Ventura 13.6.3, iOS 17.2 y iPadOS 17.2, tvOS 17.2, watchOS 10.2, macOS Sonoma 14.2. • https://support.apple.com/en-us/HT214035 https://support.apple.com/en-us/HT214036 https://support.apple.com/en-us/HT214037 https://support.apple.com/en-us/HT214038 https://support.apple.com/en-us/HT214040 https://support.apple.com/en-us/HT214041 •
CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 1CVE-2023-42931
https://notcve.org/view.php?id=CVE-2023-42931
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.6.3, macOS Sonoma 14.2, macOS Monterey 12.7.2. A process may gain admin privileges without proper authentication. El problema se solucionó con controles mejorados. Este problema se solucionó en macOS Ventura 13.6.3, macOS Sonoma 14.2, macOS Monterey 12.7.2. • https://github.com/d0rb/CVE-2023-42931 https://support.apple.com/en-us/HT214036 https://support.apple.com/en-us/HT214037 https://support.apple.com/en-us/HT214038 • CWE-280: Improper Handling of Insufficient Permissions or Privileges •