CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2023-40403
https://notcve.org/view.php?id=CVE-2023-40403
26 Sep 2023 — The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, iOS 16.7 and iPadOS 16.7, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. Processing web content may disclose sensitive information. El problema se solucionó mejorando el manejo de la memoria. Este problema se solucionó en macOS Ventura 13.6, tvOS 17, iOS 16.7 y iPadOS 16.7, macOS Monterey 12.7, watchOS 10, iOS 17 y iPadOS 17, macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/10 •
CVSS: 3.3EPSS: 0%CPEs: 6EXPL: 0CVE-2023-40395
https://notcve.org/view.php?id=CVE-2023-40395
26 Sep 2023 — The issue was addressed with improved handling of caches. This issue is fixed in tvOS 17, iOS 16.7 and iPadOS 16.7, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to access contacts. El problema se solucionó mejorando el manejo de los cachés. Este problema se solucionó en tvOS 17, iOS 16.7 y iPadOS 16.7, macOS Monterey 12.7, watchOS 10, iOS 17 y iPadOS 17, macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/10 •
CVSS: 3.3EPSS: 0%CPEs: 4EXPL: 0CVE-2023-40520
https://notcve.org/view.php?id=CVE-2023-40520
26 Sep 2023 — The issue was addressed with improved checks. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10. An app may be able to access edited photos saved to a temporary directory. El problema se solucionó con controles mejorados. Este problema se solucionó en tvOS 17, iOS 17 y iPadOS 17, watchOS 10. • http://seclists.org/fulldisclosure/2023/Oct/10 •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-40432
https://notcve.org/view.php?id=CVE-2023-40432
26 Sep 2023 — The issue was addressed with improved memory handling. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may be able to execute arbitrary code with kernel privileges. El problema se solucionó mejorando el manejo de la memoria. Este problema se solucionó en tvOS 17, iOS 17 y iPadOS 17, watchOS 10, macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/10 •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2023-40424
https://notcve.org/view.php?id=CVE-2023-40424
26 Sep 2023 — The issue was addressed with improved checks. This issue is fixed in iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may be able to access user-sensitive data. El problema se solucionó con controles mejorados. Este problema se solucionó en iOS 17 y iPadOS 17, watchOS 10, macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/3 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2023-40412
https://notcve.org/view.php?id=CVE-2023-40412
26 Sep 2023 — The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17. An app may be able to execute arbitrary code with kernel privileges. El problema se solucionó mejorando el manejo de la memoria. Este problema se solucionó en macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 y iPadOS 17. • http://seclists.org/fulldisclosure/2023/Oct/10 •
CVSS: 3.3EPSS: 0%CPEs: 4EXPL: 0CVE-2023-35990
https://notcve.org/view.php?id=CVE-2023-35990
26 Sep 2023 — The issue was addressed with improved checks. This issue is fixed in iOS 17 and iPadOS 17, watchOS 10, iOS 16.7 and iPadOS 16.7, macOS Sonoma 14. An app may be able to identify what other apps a user has installed. El problema se solucionó con controles mejorados. Este problema se solucionó en iOS 17 y iPadOS 17, watchOS 10, iOS 16.7 y iPadOS 16.7, macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/3 • CWE-863: Incorrect Authorization •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 1CVE-2023-40429
https://notcve.org/view.php?id=CVE-2023-40429
26 Sep 2023 — A permissions issue was addressed with improved validation. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may be able to access sensitive user data. Se solucionó un problema de permisos con una validación mejorada. Este problema se solucionó en tvOS 17, iOS 17 y iPadOS 17, watchOS 10, macOS Sonoma 14. • https://github.com/biscuitehh/cve-2023-40429-ez-device-name •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2023-39434 – webkitgtk: processing web content may lead to arbitrary code execution
https://notcve.org/view.php?id=CVE-2023-39434
26 Sep 2023 — A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. Processing web content may lead to arbitrary code execution. Se solucionó un problema de Use-After-Free con una gestión de memoria mejorada. Este problema se solucionó en iOS 17 y iPadOS 17, watchOS 10, macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/3 • CWE-416: Use After Free •
CVSS: 7.1EPSS: 0%CPEs: 6EXPL: 0CVE-2023-40452
https://notcve.org/view.php?id=CVE-2023-40452
26 Sep 2023 — The issue was addressed with improved bounds checks. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to overwrite arbitrary files. El problema se solucionó con comprobaciones de límites mejoradas. Este problema se solucionó en macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 y iPadOS 17, macOS Sonoma 14. • http://seclists.org/fulldisclosure/2023/Oct/10 •