Apple Ios 16.7.2 And Ipados vulnerabilities

CVE-2023-40423 [HIGH] CVE-2023-40423: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-40423 Component: IOTextEncryptionFamily Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.

CVE-2023-40446 [HIGH] CVE-2023-40446: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-40446 Component: Kernel Impact: An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations Description: The issue was addressed with improved memory handling.

CVE-2023-42848 [HIGH] CVE-2023-42848: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-42848 Component: ImageIO Impact: Processing a maliciously crafted image may lead to heap corruption Description: The issue was addressed with improved bounds checks.

CVE-2023-32359 [HIGH] CVE-2023-32359: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-32359 Component: WebKit Impact: A user's password may be read aloud by VoiceOver Description: This issue was addressed with improved redaction of sensitive information.

CVE-2023-41976 [HIGH] CVE-2023-41976: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-41976 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: A use-after-free issue was addressed with improved memory management.

CVE-2023-42841 [HIGH] CVE-2023-42841: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-42841 Component: Pro Res Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.

CVE-2023-42942 [HIGH] CVE-2023-42942: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-42942 Component: Kernel Impact: An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations Description: The issue was addressed with improved memory handling.

CVE-2023-40447 [HIGH] CVE-2023-40447: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-40447 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: The issue was addressed with improved memory handling.

CVE-2023-42852 [HIGH] CVE-2023-42852: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-42852 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: A logic issue was addressed with improved checks.

CVE-2023-42873 [HIGH] CVE-2023-42873: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-42873 Component: Pro Res Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved bounds checks.

CVE-2023-42846 [MEDIUM] CVE-2023-42846: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-42846 Component: Mail Drafts Impact: Hide My Email may be deactivated unexpectedly Description: An inconsistent user interface issue was addressed with improved state management.

CVE-2023-40408 [MEDIUM] CVE-2023-40408: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-40408 Component: Mail Drafts Impact: Hide My Email may be deactivated unexpectedly Description: An inconsistent user interface issue was addressed with improved state management.

CVE-2023-41997 [MEDIUM] CVE-2023-41997: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-41997 Component: Siri Impact: An attacker with physical access may be able to use Siri to access sensitive user data Description: This issue was addressed by restricting options offered on a locked device.

CVE-2023-41977 [MEDIUM] CVE-2023-41977: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-41977 Component: Safari Impact: Visiting a malicious website may reveal browsing history Description: The issue was addressed with improved handling of caches.

CVE-2023-42823 [MEDIUM] CVE-2023-42823: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-42823 Component: CVE-2023-42823

CVE-2023-41254 [MEDIUM] CVE-2023-41254: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-41254 Component: Weather Impact: An app may be able to access sensitive user data Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2023-41983 [MEDIUM] CVE-2023-41983: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-41983 Component: WebKit Process Model Impact: Processing web content may lead to a denial-of-service Description: The issue was addressed with improved memory handling.

CVE-2023-42849 [MEDIUM] CVE-2023-42849: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-42849 Component: Kernel Impact: An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations Description: The issue was addressed with improved memory handling.

CVE-2023-40416 [MEDIUM] CVE-2023-40416: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-40416 Component: ImageIO Impact: Processing an image may result in disclosure of process memory Description: The issue was addressed with improved memory handling.

CVE-2023-40413 [MEDIUM] CVE-2023-40413: iOS 16.7.2 and iPadOS 16.7.2 Apple Security Update: About the security content of iOS 16.7.2 and iPadOS 16.7.2 Product: iOS 16.7.2 and iPadOS Version: 16.7.2 CVE: CVE-2023-40413 Component: Find My Impact: An app may be able to read sensitive location information Description: The issue was addressed with improved handling of caches.