Apple Macos Big Sur vulnerabilities

CVE-2023-32411 [MEDIUM] CVE-2023-32411: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32411 Component: AppleMobileFileIntegrity Impact: An app may be able to bypass Privacy preferences Description: This issue was addressed with improved entitlements.

CVE-2023-27945 [MEDIUM] CVE-2023-27945: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-27945 Component: Dev Tools Impact: A sandboxed app may be able to collect system logs Description: This issue was addressed with improved entitlements.

CVE-2023-32382 [MEDIUM] CVE-2023-32382: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32382 Component: Model I/O Impact: Processing a 3D model may result in disclosure of process memory Description: An out-of-bounds read was addressed with improved input validation.

CVE-2023-32392 [MEDIUM] CVE-2023-32392: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32392 Component: GeoServices Impact: An app may be able to read sensitive location information Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2023-32388 [MEDIUM] CVE-2023-32388: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32388 Component: Accessibility Impact: An app may be able to bypass Privacy preferences Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2023-32410 [MEDIUM] CVE-2023-32410: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32410 Component: IOSurface Impact: An app may be able to leak sensitive kernel state Description: An out-of-bounds read was addressed with improved input validation.

CVE-2023-32403 [MEDIUM] CVE-2023-32403: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32403 Component: NetworkExtension Impact: An app may be able to read sensitive location information Description: This issue was addressed with improved redaction of sensitive information.

CVE-2023-32407 [MEDIUM] CVE-2023-32407: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32407 Component: Metal Impact: An app may be able to bypass Privacy preferences Description: A logic issue was addressed with improved state management.

CVE-2023-32352 [MEDIUM] CVE-2023-32352: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32352 Component: LaunchServices Impact: An app may bypass Gatekeeper checks Description: A logic issue was addressed with improved checks.

CVE-2023-32360 [MEDIUM] CVE-2023-32360: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32360 Component: CUPS Impact: An unauthenticated user may be able to access recently printed documents Description: An authentication issue was addressed with improved state management.

CVE-2023-32386 [LOW] CVE-2023-32386: macOS Big Sur 11.7.7 Apple Security Update: About the security content of macOS Big Sur 11.7.7 Product: macOS Big Sur Version: 11.7.7 CVE: CVE-2023-32386 Component: Contacts Impact: An app may be able to observe unprotected user data Description: A privacy issue was addressed with improved handling of temporary files.

CVE-2023-28206 [HIGH] CVE-2023-28206: macOS Big Sur 11.7.6 Apple Security Update: About the security content of macOS Big Sur 11.7.6 Product: macOS Big Sur Version: 11.7.6 CVE: CVE-2023-28206 Component: IOSurfaceAccelerator Impact: An app may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited. Description: An out-of-bounds write issue was addressed with improved input validation.

CVE-2023-27953 [CRITICAL] CVE-2023-27953: macOS Big Sur 11.7.5 Apple Security Update: About the security content of macOS Big Sur 11.7.5 Product: macOS Big Sur Version: 11.7.5 CVE: CVE-2023-27953 Component: CoreServices Impact: A sandboxed process may be able to circumvent sandbox restrictions Description: This issue was addressed with improved checks.

CVE-2023-27958 [CRITICAL] CVE-2023-27958: macOS Big Sur 11.7.5 Apple Security Update: About the security content of macOS Big Sur 11.7.5 Product: macOS Big Sur Version: 11.7.5 CVE: CVE-2023-27958 Component: CoreServices Impact: A sandboxed process may be able to circumvent sandbox restrictions Description: This issue was addressed with improved checks.

CVE-2023-23525 [HIGH] CVE-2023-23525: macOS Big Sur 11.7.5 Apple Security Update: About the security content of macOS Big Sur 11.7.5 Product: macOS Big Sur Version: 11.7.5 CVE: CVE-2023-23525 Component: LaunchServices Impact: An app may be able to gain root privileges Description: This issue was addressed with improved checks.

CVE-2023-32366 [HIGH] CVE-2023-32366: macOS Big Sur 11.7.5 Apple Security Update: About the security content of macOS Big Sur 11.7.5 Product: macOS Big Sur Version: 11.7.5 CVE: CVE-2023-32366 Component: FontParser Impact: Processing a font file may lead to arbitrary code execution Description: An out-of-bounds write issue was addressed with improved input validation.

CVE-2023-27935 [HIGH] CVE-2023-27935: macOS Big Sur 11.7.5 Apple Security Update: About the security content of macOS Big Sur 11.7.5 Product: macOS Big Sur Version: 11.7.5 CVE: CVE-2023-27935 Component: CoreServices Impact: A sandboxed process may be able to circumvent sandbox restrictions Description: This issue was addressed with improved checks.

CVE-2023-27936 [HIGH] CVE-2023-27936: macOS Big Sur 11.7.5 Apple Security Update: About the security content of macOS Big Sur 11.7.5 Product: macOS Big Sur Version: 11.7.5 CVE: CVE-2023-27936 Component: CommCenter Impact: An app may be able to cause unexpected system termination or write kernel memory Description: An out-of-bounds write issue was addressed with improved input validation.

CVE-2023-0433 [HIGH] CVE-2023-0433: macOS Big Sur 11.7.5 Apple Security Update: About the security content of macOS Big Sur 11.7.5 Product: macOS Big Sur Version: 11.7.5 CVE: CVE-2023-0433 Component: CVE-2023-0433

CVE-2022-26702 [HIGH] CVE-2022-26702: macOS Big Sur 11.7.5 Apple Security Update: About the security content of macOS Big Sur 11.7.5 Product: macOS Big Sur Version: 11.7.5 CVE: CVE-2022-26702 Component: AppleAVD Impact: An application may be able to execute arbitrary code with kernel privileges Description: A use after free issue was addressed with improved memory management.