Apple Macos Big Sur vulnerabilities

CVE-2023-40442 [LOW] CVE-2023-40442: macOS Big Sur 11.7.9 Apple Security Update: About the security content of macOS Big Sur 11.7.9 Product: macOS Big Sur Version: 11.7.9 CVE: CVE-2023-40442 Component: Accessibility Impact: An app may be able to read sensitive location information Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2023-28322 [LOW] CVE-2023-28322: macOS Big Sur 11.7.9 Apple Security Update: About the security content of macOS Big Sur 11.7.9 Product: macOS Big Sur Version: 11.7.9 CVE: CVE-2023-28322 Component: CVE-2023-28322

CVE-2023-40392 [LOW] CVE-2023-40392: macOS Big Sur 11.7.9 Apple Security Update: About the security content of macOS Big Sur 11.7.9 Product: macOS Big Sur Version: 11.7.9 CVE: CVE-2023-40392 Component: CFNetwork Impact: An app may be able to read sensitive location information Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2023-32434 [HIGH] CVE-2023-32434: macOS Big Sur 11.7.8 Apple Security Update: About the security content of macOS Big Sur 11.7.8 Product: macOS Big Sur Version: 11.7.8 CVE: CVE-2023-32434 Component: Kernel Impact: An app may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7. Description: An integer overflow was addressed with improved input validation.

CVE-2023-32412 [CRITICAL] CVE-2023-32412: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32412 Component: Telephony Impact: A remote attacker may be able to cause unexpected app termination or arbitrary code execution Description: A use-after-free issue was addressed with improved memory management.

CVE-2023-32387 [CRITICAL] CVE-2023-32387: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32387 Component: CUPS Impact: An unauthenticated user may be able to access recently printed documents Description: An authentication issue was addressed with improved state management.

CVE-2023-32413 [HIGH] CVE-2023-32413: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32413 Component: Kernel Impact: An app may be able to gain root privileges Description: A race condition was addressed with improved state handling.

CVE-2023-32357 [HIGH] CVE-2023-32357: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32357 Component: Sandbox Impact: An app may be able to retain access to system configuration files even after its permission is revoked Description: An authorization issue was addressed with improved state management.

CVE-2023-32383 [HIGH] CVE-2023-32383: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32383 Component: AppleMobileFileIntegrity Impact: An app may be able to inject code into sensitive binaries bundled with Xcode Description: This issue was addressed by forcing hardened runtime on the affected binaries at the system level.

CVE-2023-32398 [HIGH] CVE-2023-32398: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32398 Component: Kernel Impact: An app may be able to execute arbitrary code with kernel privileges Description: A use-after-free issue was addressed with improved memory management.

CVE-2023-32405 [HIGH] CVE-2023-32405: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32405 Component: LaunchServices Impact: An app may bypass Gatekeeper checks Description: A logic issue was addressed with improved checks.

CVE-2023-32397 [HIGH] CVE-2023-32397: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32397 Component: Shell Impact: An app may be able to modify protected parts of the file system Description: A logic issue was addressed with improved state management.

CVE-2023-32384 [HIGH] CVE-2023-32384: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32384 Component: ImageIO Impact: Processing an image may lead to arbitrary code execution Description: A buffer overflow was addressed with improved bounds checking.

CVE-2023-32401 [HIGH] CVE-2023-32401: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32401 Component: Quick Look Impact: Parsing an office document may lead to an unexpected app termination or arbitrary code execution Description: A buffer overflow was addressed with improved bounds checking.

CVE-2023-28181 [HIGH] CVE-2023-28181: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-28181 Component: CoreCapture Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.

CVE-2023-32380 [HIGH] CVE-2023-32380: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32380 Component: Model I/O Impact: Processing a 3D model may lead to arbitrary code execution Description: An out-of-bounds write issue was addressed with improved bounds checking.

CVE-2023-32395 [MEDIUM] CVE-2023-32395: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32395 Component: Perl Impact: An app may be able to modify protected parts of the file system Description: A logic issue was addressed with improved state management.

CVE-2023-28191 [MEDIUM] CVE-2023-28191: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-28191 Component: AppleEvents Impact: An app may be able to bypass Privacy preferences Description: This issue was addressed with improved redaction of sensitive information.

CVE-2023-32355 [MEDIUM] CVE-2023-32355: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32355 Component: PackageKit Impact: An app may be able to modify protected parts of the file system Description: A logic issue was addressed with improved state management.

CVE-2023-32369 [MEDIUM] CVE-2023-32369: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32369 Component: LaunchServices Impact: An app may bypass Gatekeeper checks Description: A logic issue was addressed with improved checks.