Apple Ios 17 And Ipados vulnerabilities

CVE-2023-41070 [MEDIUM] CVE-2023-41070: iOS 17 and iPadOS 17 Apple Security Update: About the security content of iOS 17 and iPadOS 17 Product: iOS 17 and iPadOS Version: 17 CVE: CVE-2023-41070 Component: Share Sheet Impact: An app may be able to access sensitive data logged when a user shares a link Description: A logic issue was addressed with improved checks.

CVE-2023-41069 [MEDIUM] CVE-2023-41069: iOS 17 and iPadOS 17 Apple Security Update: About the security content of iOS 17 and iPadOS 17 Product: iOS 17 and iPadOS Version: 17 CVE: CVE-2023-41069 Component: Face ID Impact: A 3D model constructed to look like the enrolled user may authenticate via Face ID Description: This issue was addressed by improving Face ID anti-spoofing models.

CVE-2023-38612 [LOW] CVE-2023-38612: iOS 17 and iPadOS 17 Apple Security Update: About the security content of iOS 17 and iPadOS 17 Product: iOS 17 and iPadOS Version: 17 CVE: CVE-2023-38612 Component: Ask to Buy Impact: An app may be able to access protected user data Description: The issue was addressed with improved checks.

CVE-2023-40395 [LOW] CVE-2023-40395: iOS 17 and iPadOS 17 Apple Security Update: About the security content of iOS 17 and iPadOS 17 Product: iOS 17 and iPadOS Version: 17 CVE: CVE-2023-40395 Component: Game Center Impact: An app may be able to access contacts Description: The issue was addressed with improved handling of caches.

CVE-2023-42957 [LOW] CVE-2023-42957: iOS 17 and iPadOS 17 Apple Security Update: About the security content of iOS 17 and iPadOS 17 Product: iOS 17 and iPadOS Version: 17 CVE: CVE-2023-42957 Component: Maps Impact: An app may be able to read sensitive location information Description: A permissions issue was addressed with additional restrictions.

CVE-2023-40529 [LOW] CVE-2023-40529: iOS 17 and iPadOS 17 Apple Security Update: About the security content of iOS 17 and iPadOS 17 Product: iOS 17 and iPadOS Version: 17 CVE: CVE-2023-40529 Component: Accessibility Impact: A person with physical access to a device may be able to use VoiceOver to access private calendar information Description: This issue was addressed with improved redaction of sensitive information.

CVE-2023-42925 [LOW] CVE-2023-42925: iOS 17 and iPadOS 17 Apple Security Update: About the security content of iOS 17 and iPadOS 17 Product: iOS 17 and iPadOS Version: 17 CVE: CVE-2023-42925 Component: AppSandbox Impact: An app may be able to access Notes attachments Description: The issue was addressed with improved restriction of data container access.

CVE-2023-42969 [LOW] CVE-2023-42969: iOS 17 and iPadOS 17 Apple Security Update: About the security content of iOS 17 and iPadOS 17 Product: iOS 17 and iPadOS Version: 17 CVE: CVE-2023-42969 Impact: An app may be able to break out of its sandbox Description: The issue was addressed with improved handling of caches.

CVE-2023-41065 [LOW] CVE-2023-41065: iOS 17 and iPadOS 17 Apple Security Update: About the security content of iOS 17 and iPadOS 17 Product: iOS 17 and iPadOS Version: 17 CVE: CVE-2023-41065 Component: Bluetooth Impact: An attacker in physical proximity can cause a limited out of bounds write Description: The issue was addressed with improved checks.

CVE-2023-35990 [LOW] CVE-2023-35990: iOS 17 and iPadOS 17 Apple Security Update: About the security content of iOS 17 and iPadOS 17 Product: iOS 17 and iPadOS Version: 17 CVE: CVE-2023-35990 Component: Safari Impact: An app may be able to identify what other apps a user has installed Description: The issue was addressed with improved checks.

CVE-2023-40434 [LOW] CVE-2023-40434: iOS 17 and iPadOS 17 Apple Security Update: About the security content of iOS 17 and iPadOS 17 Product: iOS 17 and iPadOS Version: 17 CVE: CVE-2023-40434 Component: GPU Drivers Impact: Processing web content may lead to a denial-of-service Description: A resource exhaustion issue was addressed with improved input validation.

CVE-2023-42949 [LOW] CVE-2023-42949: iOS 17 and iPadOS 17 Apple Security Update: About the security content of iOS 17 and iPadOS 17 Product: iOS 17 and iPadOS Version: 17 CVE: CVE-2023-42949 Component: Photos Impact: An app may be able to access edited photos saved to a temporary directory Description: This issue was addressed with improved data protection.

CVE-2023-40384 [LOW] CVE-2023-40384: iOS 17 and iPadOS 17 Apple Security Update: About the security content of iOS 17 and iPadOS 17 Product: iOS 17 and iPadOS Version: 17 CVE: CVE-2023-40384 Component: Airport Impact: An app may be able to read sensitive location information Description: A permissions issue was addressed with improved redaction of sensitive information.

CVE-2023-40427 [LOW] CVE-2023-40427: iOS 17 and iPadOS 17 Apple Security Update: About the security content of iOS 17 and iPadOS 17 Product: iOS 17 and iPadOS Version: 17 CVE: CVE-2023-40427 Component: Maps Impact: An app may be able to read sensitive location information Description: The issue was addressed with improved handling of caches.

CVE-2023-40456 [LOW] CVE-2023-40456: iOS 17 and iPadOS 17 Apple Security Update: About the security content of iOS 17 and iPadOS 17 Product: iOS 17 and iPadOS Version: 17 CVE: CVE-2023-40456 Component: Photos Storage Impact: An app may be able to access edited photos saved to a temporary directory Description: The issue was addressed with improved checks.

CVE-2023-40520 [LOW] CVE-2023-40520: iOS 17 and iPadOS 17 Apple Security Update: About the security content of iOS 17 and iPadOS 17 Product: iOS 17 and iPadOS Version: 17 CVE: CVE-2023-40520 Component: Photos Storage Impact: An app may be able to access edited photos saved to a temporary directory Description: The issue was addressed with improved checks.