CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-32355
https://notcve.org/view.php?id=CVE-2023-32355
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An app may be able to modify protected parts of the file system. • https://support.apple.com/en-us/HT213758 https://support.apple.com/en-us/HT213759 https://support.apple.com/en-us/HT213760 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-32363
https://notcve.org/view.php?id=CVE-2023-32363
A permissions issue was addressed by removing vulnerable code and adding additional checks. This issue is fixed in macOS Ventura 13.4. An app may be able to bypass Privacy preferences. • https://support.apple.com/en-us/HT213758 •
CVSS: 6.0EPSS: 0%CPEs: 3EXPL: 0CVE-2023-32369
https://notcve.org/view.php?id=CVE-2023-32369
A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An app may be able to modify protected parts of the file system. • https://support.apple.com/en-us/HT213758 https://support.apple.com/en-us/HT213759 https://support.apple.com/en-us/HT213760 •
CVSS: 6.3EPSS: 0%CPEs: 4EXPL: 0CVE-2023-27940
https://notcve.org/view.php?id=CVE-2023-27940
The issue was addressed with additional permissions checks. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, macOS Monterey 12.6.6, macOS Ventura 13.4. A sandboxed app may be able to observe system-wide network connections. • https://support.apple.com/en-us/HT213758 https://support.apple.com/en-us/HT213759 https://support.apple.com/en-us/HT213765 •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-32360 – cups: Information leak through Cups-Get-Document operation
https://notcve.org/view.php?id=CVE-2023-32360
An authentication issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An unauthenticated user may be able to access recently printed documents. A vulnerability was found in OpenPrinting CUPS. Unauthorized users are permitted to fetch documents over local or remote networks, leading to confidentiality breach. • https://lists.debian.org/debian-lts-announce/2023/09/msg00041.html https://support.apple.com/en-us/HT213758 https://support.apple.com/en-us/HT213759 https://support.apple.com/en-us/HT213760 https://access.redhat.com/security/cve/CVE-2023-32360 https://bugzilla.redhat.com/show_bug.cgi?id=2230495 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •