Apple Ios 17.2 And Ipados vulnerabilities

CVE-2023-43010 [HIGH] CVE-2023-43010: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-43010 Component: WebKit Impact: Processing maliciously crafted web content may lead to memory corruption. Description: The issue was addressed with improved memory handling.

CVE-2023-42962 [HIGH] CVE-2023-42962: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42962 Component: CallKit Impact: A remote attacker may be able to cause a denial-of-service Description: This issue was addressed with improved checks

CVE-2023-42950 [HIGH] CVE-2023-42950: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42950 Component: WebKit Impact: Processing maliciously crafted web content may lead to arbitrary code execution Description: A use after free issue was addressed with improved memory management.

CVE-2023-42947 [HIGH] CVE-2023-42947: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42947 Component: TCC Impact: An app may be able to break out of its sandbox Description: A path handling issue was addressed with improved validation.

CVE-2023-42974 [HIGH] CVE-2023-42974: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42974 Component: IOUSBDeviceFamily Impact: An app may be able to execute arbitrary code with kernel privileges Description: A race condition was addressed with improved state handling.

CVE-2023-42890 [HIGH] CVE-2023-42890: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42890 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: The issue was addressed with improved memory handling.

CVE-2023-42899 [HIGH] CVE-2023-42899: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42899 Component: ImageIO Impact: Processing an image may lead to arbitrary code execution Description: The issue was addressed with improved memory handling.

CVE-2023-40389 [MEDIUM] CVE-2023-40389: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-40389 Component: Transparency Impact: An app may be able to access sensitive user data Description: The issue was addressed with improved restriction of data container access.

CVE-2023-42936 [MEDIUM] CVE-2023-42936: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42936 Component: Sandbox Impact: An app may be able to access user-sensitive data Description: This issue was addressed with improved redaction of sensitive information.

CVE-2023-42937 [MEDIUM] CVE-2023-42937: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42937 Component: Accessibility Impact: An app may be able to access sensitive user data Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2023-42896 [MEDIUM] CVE-2023-42896: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42896 Component: Assets Impact: An app may be able to modify protected parts of the file system Description: An issue was addressed with improved handling of temporary files.

CVE-2023-42898 [MEDIUM] CVE-2023-42898: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42898 Component: ImageIO Impact: Processing an image may lead to arbitrary code execution Description: The issue was addressed with improved memory handling.

CVE-2023-42883 [MEDIUM] CVE-2023-42883: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42883 Component: WebKit Impact: Processing an image may lead to a denial-of-service Description: The issue was addressed with improved memory handling.

CVE-2023-42893 [MEDIUM] CVE-2023-42893: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42893 Component: CVE-2023-42893

CVE-2023-45866 [MEDIUM] CVE-2023-45866: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-45866 Component: Bluetooth Impact: An attacker in a privileged network position may be able to inject keystrokes by spoofing a keyboard Description: The issue was addressed with improved checks.

CVE-2023-42884 [MEDIUM] CVE-2023-42884: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42884 Component: AVEVideoEncoder Impact: An app may be able to disclose kernel memory Description: This issue was addressed with improved redaction of sensitive information.

CVE-2023-42923 [MEDIUM] CVE-2023-42923: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42923 Component: Safari Private Browsing Impact: Private Browsing tabs may be accessed without authentication Description: This issue was addressed through improved state management.

CVE-2023-42941 [MEDIUM] CVE-2023-42941: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42941 Component: Bluetooth Impact: An attacker in a privileged network position may be able to perform a denial-of-service attack using crafted Bluetooth packets Description: The issue was addressed with improved checks.

CVE-2023-42914 [MEDIUM] CVE-2023-42914: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42914 Component: Kernel Impact: An app may be able to break out of its sandbox Description: The issue was addressed with improved memory handling.

CVE-2023-42888 [MEDIUM] CVE-2023-42888: iOS 17.2 and iPadOS 17.2 Apple Security Update: About the security content of iOS 17.2 and iPadOS 17.2 Product: iOS 17.2 and iPadOS Version: 17.2 CVE: CVE-2023-42888 Component: ImageIO Impact: Processing a maliciously crafted image may result in disclosure of process memory Description: The issue was addressed with improved checks.