CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2023-23494
https://notcve.org/view.php?id=CVE-2023-23494
A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 16.4 and iPadOS 16.4. A user in a privileged network position may be able to cause a denial-of-service. • https://support.apple.com/en-us/HT213676 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 3.3EPSS: 0%CPEs: 3EXPL: 0CVE-2023-23523
https://notcve.org/view.php?id=CVE-2023-23523
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. Photos belonging to the Hidden Photos Album could be viewed without authentication through Visual Lookup. • https://support.apple.com/en-us/HT213670 https://support.apple.com/en-us/HT213676 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-23525
https://notcve.org/view.php?id=CVE-2023-23525
This issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, macOS Big Sur 11.7.5. An app may be able to gain root privileges. • https://support.apple.com/en-us/HT213670 https://support.apple.com/en-us/HT213675 https://support.apple.com/en-us/HT213676 •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-23526
https://notcve.org/view.php?id=CVE-2023-23526
This was addressed with additional checks by Gatekeeper on files downloaded from an iCloud shared-by-me folder. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. A file from an iCloud shared-by-me folder may be able to bypass Gatekeeper. • https://support.apple.com/en-us/HT213670 https://support.apple.com/en-us/HT213676 •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-23528
https://notcve.org/view.php?id=CVE-2023-23528
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in tvOS 16.4, iOS 16.4 and iPadOS 16.4. Processing a maliciously crafted Bluetooth packet may result in disclosure of process memory. • https://support.apple.com/en-us/HT213674 https://support.apple.com/en-us/HT213676 • CWE-125: Out-of-bounds Read •