CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-27962
https://notcve.org/view.php?id=CVE-2023-27962
A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to modify protected parts of the file system. • https://support.apple.com/en-us/HT213670 https://support.apple.com/en-us/HT213675 https://support.apple.com/en-us/HT213677 •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-27953
https://notcve.org/view.php?id=CVE-2023-27953
The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. A remote user may be able to cause unexpected system termination or corrupt kernel memory. • https://support.apple.com/en-us/HT213670 https://support.apple.com/en-us/HT213675 https://support.apple.com/en-us/HT213677 • CWE-787: Out-of-bounds Write •
CVSS: 4.7EPSS: 0%CPEs: 1EXPL: 0CVE-2023-27952
https://notcve.org/view.php?id=CVE-2023-27952
A race condition was addressed with improved locking. This issue is fixed in macOS Ventura 13.3. An app may bypass Gatekeeper checks. • https://support.apple.com/en-us/HT213670 https://support.apple.com/kb/HT214119 http://seclists.org/fulldisclosure/2024/Jul/18 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-28192
https://notcve.org/view.php?id=CVE-2023-28192
A permissions issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to read sensitive location information. • https://support.apple.com/en-us/HT213670 https://support.apple.com/en-us/HT213675 https://support.apple.com/en-us/HT213677 • CWE-276: Incorrect Default Permissions •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-27957
https://notcve.org/view.php?id=CVE-2023-27957
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.3. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution. • https://support.apple.com/en-us/HT213670 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •