Apple Ios 16.4 And Ipados vulnerabilities

CVE-2023-27954 [MEDIUM] CVE-2023-27954: iOS 16.4 and iPadOS 16.4 Apple Security Update: About the security content of iOS 16.4 and iPadOS 16.4 Product: iOS 16.4 and iPadOS Version: 16.4 CVE: CVE-2023-27954 Component: WebKit Impact: A website may be able to track sensitive user information Description: The issue was addressed by removing origin information.

CVE-2023-28187 [MEDIUM] CVE-2023-28187: iOS 16.4 and iPadOS 16.4 Apple Security Update: About the security content of iOS 16.4 and iPadOS 16.4 Product: iOS 16.4 and iPadOS Version: 16.4 CVE: CVE-2023-28187 Component: Kernel Impact: A user may be able to cause a denial-of-service Description: This issue was addressed with improved state management.

CVE-2023-23535 [MEDIUM] CVE-2023-23535: iOS 16.4 and iPadOS 16.4 Apple Security Update: About the security content of iOS 16.4 and iPadOS 16.4 Product: iOS 16.4 and iPadOS Version: 16.4 CVE: CVE-2023-23535 Component: ImageIO Impact: Processing a maliciously crafted image may result in disclosure of process memory Description: The issue was addressed with improved memory handling.

CVE-2023-23528 [MEDIUM] CVE-2023-23528: iOS 16.4 and iPadOS 16.4 Apple Security Update: About the security content of iOS 16.4 and iPadOS 16.4 Product: iOS 16.4 and iPadOS Version: 16.4 CVE: CVE-2023-23528 Component: Core Bluetooth Impact: Processing a maliciously crafted Bluetooth packet may result in disclosure of process memory Description: An out-of-bounds read was addressed with improved bounds checking.

CVE-2023-27955 [MEDIUM] CVE-2023-27955: iOS 16.4 and iPadOS 16.4 Apple Security Update: About the security content of iOS 16.4 and iPadOS 16.4 Product: iOS 16.4 and iPadOS Version: 16.4 CVE: CVE-2023-27955 Component: ColorSync Impact: An app may be able to read arbitrary files Description: The issue was addressed with improved checks.

CVE-2023-23543 [LOW] CVE-2023-23543: iOS 16.4 and iPadOS 16.4 Apple Security Update: About the security content of iOS 16.4 and iPadOS 16.4 Product: iOS 16.4 and iPadOS Version: 16.4 CVE: CVE-2023-23543 Component: Camera Impact: A sandboxed app may be able to determine which app is currently using the camera Description: The issue was addressed with additional restrictions on the observability of app states.

CVE-2023-23541 [LOW] CVE-2023-23541: iOS 16.4 and iPadOS 16.4 Apple Security Update: About the security content of iOS 16.4 and iPadOS 16.4 Product: iOS 16.4 and iPadOS Version: 16.4 CVE: CVE-2023-23541 Component: Accessibility Impact: An app may be able to access information about a user’s contacts Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2023-27928 [LOW] CVE-2023-27928: iOS 16.4 and iPadOS 16.4 Apple Security Update: About the security content of iOS 16.4 and iPadOS 16.4 Product: iOS 16.4 and iPadOS Version: 16.4 CVE: CVE-2023-27928 Component: Identity Services Impact: An app may be able to access information about a user’s contacts Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2023-23523 [LOW] CVE-2023-23523: iOS 16.4 and iPadOS 16.4 Apple Security Update: About the security content of iOS 16.4 and iPadOS 16.4 Product: iOS 16.4 and iPadOS Version: 16.4 CVE: CVE-2023-23523 Component: Photos Impact: Photos belonging to the Hidden Photos Album could be viewed without authentication through Visual Lookup Description: A logic issue was addressed with improved restrictions.

CVE-2022-46724 [LOW] CVE-2022-46724: iOS 16.4 and iPadOS 16.4 Apple Security Update: About the security content of iOS 16.4 and iPadOS 16.4 Product: iOS 16.4 and iPadOS Version: 16.4 CVE: CVE-2022-46724 Component: Magnifier Impact: A person with physical access to an iOS device may be able to view the last image used in Magnifier from the lock screen Description: This issue was addressed by restricting options offered on a locked device.

CVE-2023-28195 [LOW] CVE-2023-28195: iOS 16.4 and iPadOS 16.4 Apple Security Update: About the security content of iOS 16.4 and iPadOS 16.4 Product: iOS 16.4 and iPadOS Version: 16.4 CVE: CVE-2023-28195 Component: Find My Impact: An app may be able to read sensitive location information Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2023-42830 [LOW] CVE-2023-42830: iOS 16.4 and iPadOS 16.4 Apple Security Update: About the security content of iOS 16.4 and iPadOS 16.4 Product: iOS 16.4 and iPadOS Version: 16.4 CVE: CVE-2023-42830 Component: App Store Impact: An app may be able to read sensitive location information Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2023-28194 [LOW] CVE-2023-28194: iOS 16.4 and iPadOS 16.4 Apple Security Update: About the security content of iOS 16.4 and iPadOS 16.4 Product: iOS 16.4 and iPadOS Version: 16.4 CVE: CVE-2023-28194 Component: Safari Impact: An app may be able to unexpectedly create a bookmark on the Home Screen Description: The issue was addressed with improved checks.