CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-46710
https://notcve.org/view.php?id=CVE-2022-46710
10 Jan 2024 — A logic issue was addressed with improved checks. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1. Location data may be shared via iCloud links even if Location metadata is disabled via the Share Sheet. Se solucionó un problema de lógica con controles mejorados. Este problema se solucionó en iOS 16.2 y iPadOS 16.2, macOS Ventura 13.1. • https://support.apple.com/en-us/HT213530 •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2023-41075
https://notcve.org/view.php?id=CVE-2023-41075
10 Jan 2024 — A type confusion issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.7.5, macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4. An app may be able to execute arbitrary code with kernel privileges. Se solucionó un problema de confusión de tipos con comprobaciones mejoradas. Este problema se solucionó en macOS Big Sur 11.7.5, macOS Ventura 13.3, iOS 16.4 y iPadOS 16.4, iOS 15.7.4 y iPadOS 15.7.4, macOS Monterey 12.6.4. • https://support.apple.com/en-us/HT213670 • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-42862
https://notcve.org/view.php?id=CVE-2023-42862
10 Jan 2024 — An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.3, tvOS 16.4, iOS 16.4 and iPadOS 16.4, watchOS 9.4. Processing an image may result in disclosure of process memory. Se solucionó una lectura fuera de los límites con una validación de entrada mejorada. Este problema se solucionó en macOS Ventura 13.3, tvOS 16.4, iOS 16.4 y iPadOS 16.4, watchOS 9.4. • https://support.apple.com/en-us/HT213670 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2023-40385
https://notcve.org/view.php?id=CVE-2023-40385
10 Jan 2024 — This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Sonoma 14, Safari 17, iOS 17 and iPadOS 17. A remote attacker may be able to view leaked DNS queries with Private Relay turned on. Este problema se solucionó eliminando el código vulnerable. Este problema se solucionó en macOS Sonoma 14, Safari 17, iOS 17 y iPadOS 17. • https://support.apple.com/en-us/HT213938 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-41994
https://notcve.org/view.php?id=CVE-2023-41994
10 Jan 2024 — A logic issue was addressed with improved checks This issue is fixed in macOS Sonoma 14. A camera extension may be able to access the camera view from apps other than the app for which it was granted permission. Se solucionó un problema lógico con comprobaciones mejoradas. Este problema se solucionó en macOS Sonoma 14. Es posible que una extensión de cámara pueda acceder a la vista de la cámara desde aplicaciones distintas de aquella para la que se le otorgó permiso. • https://support.apple.com/en-us/HT213940 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-40393
https://notcve.org/view.php?id=CVE-2023-40393
10 Jan 2024 — An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14. Photos in the Hidden Photos Album may be viewed without authentication. Se solucionó un problema de autenticación con una gestión de estado mejorada. Este problema se solucionó en macOS Sonoma 14. • https://support.apple.com/en-us/HT213940 • CWE-306: Missing Authentication for Critical Function •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-40433
https://notcve.org/view.php?id=CVE-2023-40433
10 Jan 2024 — A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.3. An app may bypass Gatekeeper checks. Se solucionó un problema de lógica con controles mejorados. Este problema se solucionó en macOS Ventura 13.3. • https://support.apple.com/en-us/HT213670 •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2023-32366
https://notcve.org/view.php?id=CVE-2023-32366
10 Jan 2024 — An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.7.5, macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4. Processing a font file may lead to arbitrary code execution. Se solucionó un problema de escritura fuera de los límites con una validación de entrada mejorada. Este problema se solucionó en macOS Big Sur 11.7.5, macOS Ventura 13.3, iOS 16.4 y iPadOS 16.4, iOS 15.7.4 y iPadOS 15.7.4, macOS Mon... • https://support.apple.com/en-us/HT213670 • CWE-787: Out-of-bounds Write •
CVSS: 3.3EPSS: 0%CPEs: 3EXPL: 1CVE-2023-28197
https://notcve.org/view.php?id=CVE-2023-28197
10 Jan 2024 — An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Ventura 13.3, macOS Big Sur 11.7.5, macOS Monterey 12.6.4. An app may be able to access user-sensitive data. Se solucionó un problema de acceso con restricciones adicionales de sandbox. Este problema se solucionó en macOS Ventura 13.3, macOS Big Sur 11.7.5, macOS Monterey 12.6.4. • https://github.com/spotlightishere/inputcontrol •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-40430
https://notcve.org/view.php?id=CVE-2023-40430
10 Jan 2024 — A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14. An app may be able to access removable volumes without user consent. Se solucionó un problema de lógica con controles mejorados. Este problema se solucionó en macOS Sonoma 14. • https://support.apple.com/en-us/HT213940 •