Apple Ios 17.1 And Ipados vulnerabilities

CVE-2023-40446 [HIGH] CVE-2023-40446: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-40446 Component: Kernel Impact: An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations Description: The issue was addressed with improved memory handling.

CVE-2023-41976 [HIGH] CVE-2023-41976: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-41976 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: A use-after-free issue was addressed with improved memory management.

CVE-2023-42848 [HIGH] CVE-2023-42848: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-42848 Component: ImageIO Impact: Processing a maliciously crafted image may lead to heap corruption Description: The issue was addressed with improved bounds checks.

CVE-2023-42942 [HIGH] CVE-2023-42942: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-42942 Component: Kernel Impact: An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations Description: The issue was addressed with improved memory handling.

CVE-2023-40423 [HIGH] CVE-2023-40423: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-40423 Component: IOTextEncryptionFamily Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.

CVE-2023-40447 [HIGH] CVE-2023-40447: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-40447 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: The issue was addressed with improved memory handling.

CVE-2023-42852 [HIGH] CVE-2023-42852: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-42852 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: A logic issue was addressed with improved checks.

CVE-2023-42873 [HIGH] CVE-2023-42873: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-42873 Component: Pro Res Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved bounds checks.

CVE-2023-42847 [HIGH] CVE-2023-42847: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-42847 Component: Passkeys Impact: An attacker may be able to access passkeys without authentication Description: A logic issue was addressed with improved checks.

CVE-2023-42928 [HIGH] CVE-2023-42928: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-42928 Component: FairPlay Impact: An app may be able to gain elevated privileges Description: The issue was addressed with improved bounds checks.

CVE-2023-42841 [HIGH] CVE-2023-42841: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-42841 Component: Pro Res Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.

CVE-2023-40445 [HIGH] CVE-2023-40445: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-40445 Component: Status Bar Impact: A device may persistently fail to lock Description: The issue was addressed with improved UI handling.

CVE-2023-42846 [MEDIUM] CVE-2023-42846: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-42846 Component: Mail Drafts Impact: Hide My Email may be deactivated unexpectedly Description: An inconsistent user interface issue was addressed with improved state management.

CVE-2023-42849 [MEDIUM] CVE-2023-42849: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-42849 Component: Kernel Impact: An attacker that has already achieved kernel code execution may be able to bypass kernel memory mitigations Description: The issue was addressed with improved memory handling.

CVE-2023-42834 [MEDIUM] CVE-2023-42834: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-42834 Component: Find My Impact: An app may be able to access sensitive user data Description: A privacy issue was addressed with improved handling of files.

CVE-2023-42839 [MEDIUM] CVE-2023-42839: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-42839 Component: Sandbox Impact: An app may be able to access sensitive user data Description: This issue was addressed with improved state management.

CVE-2023-41988 [MEDIUM] CVE-2023-41988: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-41988 Component: Siri Impact: An attacker with physical access may be able to use Siri to access sensitive user data Description: This issue was addressed by restricting options offered on a locked device.

CVE-2023-42953 [MEDIUM] CVE-2023-42953: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-42953 Component: Game Center Impact: An app may be able to access sensitive user data Description: A permissions issue was addressed with additional restrictions.

CVE-2023-42946 [MEDIUM] CVE-2023-42946: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-42946 Component: CVE-2023-42946

CVE-2023-41983 [MEDIUM] CVE-2023-41983: iOS 17.1 and iPadOS 17.1 Apple Security Update: About the security content of iOS 17.1 and iPadOS 17.1 Product: iOS 17.1 and iPadOS Version: 17.1 CVE: CVE-2023-41983 Component: WebKit Process Model Impact: Processing web content may lead to a denial-of-service Description: The issue was addressed with improved memory handling.