Apple Ios 15.7.4 And Ipados vulnerabilities

CVE-2023-28201 [CRITICAL] CVE-2023-28201: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-28201 Component: WebKit Web Inspector Impact: A remote user may be able to cause unexpected app termination or arbitrary code execution Description: This issue was addressed with improved state management.

CVE-2023-41075 [HIGH] CVE-2023-41075: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-41075 Component: Kernel Impact: An app may be able to cause a denial-of-service Description: An integer overflow was addressed through improved input validation.

CVE-2023-27946 [HIGH] CVE-2023-27946: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-27946 Component: ImageIO Impact: Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2023-27949 [HIGH] CVE-2023-27949: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-27949 Component: Model I/O Impact: Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution Description: An out-of-bounds read was addressed with improved input validation.

CVE-2023-32366 [HIGH] CVE-2023-32366: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-32366 Component: FontParser Impact: Processing a font file may lead to arbitrary code execution Description: An out-of-bounds write issue was addressed with improved input validation.

CVE-2023-23536 [HIGH] CVE-2023-23536: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-23536 Component: Kernel Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved bounds checks.

CVE-2023-27969 [HIGH] CVE-2023-27969: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-27969 Component: Kernel Impact: An app may be able to execute arbitrary code with kernel privileges Description: A use after free issue was addressed with improved memory management.

CVE-2023-23529 [HIGH] CVE-2023-23529: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-23529 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. Description: A type confusion issue was addressed with improved checks.

CVE-2023-28198 [HIGH] CVE-2023-28198: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-28198 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: A use-after-free issue was addressed with improved memory management.

CVE-2023-27936 [HIGH] CVE-2023-27936: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-27936 Component: CommCenter Impact: An app may be able to cause unexpected system termination or write kernel memory Description: An out-of-bounds write issue was addressed with improved input validation.

CVE-2023-32358 [HIGH] CVE-2023-32358: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-32358 Component: WebKit PDF Impact: Processing web content may lead to arbitrary code execution Description: A type confusion issue was addressed with improved checks.

CVE-2023-27963 [HIGH] CVE-2023-27963: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-27963 Component: Shortcuts Impact: A shortcut may be able to use sensitive data with certain actions without prompting the user Description: The issue was addressed with additional permissions checks.

CVE-2023-27941 [MEDIUM] CVE-2023-27941: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-27941 Component: Kernel Impact: An app may be able to disclose kernel memory Description: A validation issue was addressed with improved input sanitization.

CVE-2023-23537 [MEDIUM] CVE-2023-23537: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-23537 Component: Find My Impact: An app may be able to read sensitive location information Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2023-27956 [MEDIUM] CVE-2023-27956: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-27956 Component: FontParser Impact: Processing a maliciously crafted image may result in disclosure of process memory Description: The issue was addressed with improved memory handling.

CVE-2023-27950 [MEDIUM] CVE-2023-27950: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-27950 Component: Model I/O Impact: Processing an image may result in disclosure of process memory Description: An out-of-bounds read was addressed with improved input validation.

CVE-2023-23535 [MEDIUM] CVE-2023-23535: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-23535 Component: ImageIO Impact: Processing a maliciously crafted image may result in disclosure of process memory Description: The issue was addressed with improved memory handling.

CVE-2023-27961 [MEDIUM] CVE-2023-27961: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-27961 Component: Calendar Impact: Importing a maliciously crafted calendar invitation may exfiltrate user information Description: Multiple validation issues were addressed with improved input sanitization.

CVE-2023-27954 [MEDIUM] CVE-2023-27954: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-27954 Component: WebKit Impact: A website may be able to track sensitive user information Description: The issue was addressed by removing origin information.

CVE-2023-28200 [MEDIUM] CVE-2023-28200: iOS 15.7.4 and iPadOS 15.7.4 Apple Security Update: About the security content of iOS 15.7.4 and iPadOS 15.7.4 Product: iOS 15.7.4 and iPadOS Version: 15.7.4 CVE: CVE-2023-28200 Component: Kernel Impact: An app may be able to disclose kernel memory Description: A validation issue was addressed with improved input sanitization.