Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Macos
(Apple)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 1822 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-09-27 | CVE-2023-41968 | This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to read arbitrary files. | Ipados, Iphone_os, Macos, Tvos, Watchos | 5.5 | ||
| 2023-09-27 | CVE-2023-41979 | A race condition was addressed with improved locking. This issue is fixed in macOS Sonoma 14. An app may be able to modify protected parts of the file system. | Macos | 4.7 | ||
| 2023-09-27 | CVE-2023-41980 | A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to bypass Privacy preferences. | Ipados, Iphone_os, Macos | 5.5 | ||
| 2023-09-27 | CVE-2023-41981 | The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, iOS 16.7 and iPadOS 16.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations. | Ipados, Iphone_os, Macos, Tvos, Watchos | 4.4 | ||
| 2023-09-27 | CVE-2023-41984 | The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, iOS 16.7 and iPadOS 16.7, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to execute arbitrary code with kernel privileges. | Ipados, Iphone_os, Macos, Tvos, Watchos | 7.8 | ||
| 2023-09-27 | CVE-2023-41986 | The issue was addressed with improved checks. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to modify protected parts of the file system. | Ipados, Iphone_os, Macos | 5.5 | ||
| 2023-09-27 | CVE-2023-41995 | A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to execute arbitrary code with kernel privileges. | Ipados, Iphone_os, Macos | 7.8 | ||
| 2023-09-27 | CVE-2023-41996 | The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.6. Apps that fail verification checks may still launch. | Macos | 5.5 | ||
| 2023-09-27 | CVE-2023-44216 | PVRIC (PowerVR Image Compression) on Imagination 2018 and later GPU devices offers software-transparent compression that enables cross-origin pixel-stealing attacks against feTurbulence and feBlend in the SVG Filter specification, aka a GPU.zip issue. For example, attackers can sometimes accurately determine text contained on a web page from one origin if they control a resource from a different origin. | Ryzen_5_7600x, Ryzen_7_4800u, M1_mac_mini, Macos, Ubuntu_linux, Android, Pixel_6, Core_i7\-10510u, Core_i7\-10610u, Core_i7\-11800h, Core_i7\-12700k, Core_i7\-8700, Windows_10, Windows_11, Geforce_rtx_2080_super, Geforce_rtx_3060 | 5.3 | ||
| 2023-10-25 | CVE-2023-40401 | The issue was addressed with additional permissions checks. This issue is fixed in macOS Ventura 13.6.1. An attacker may be able to access passkeys without authentication. | Macos | 7.5 |