Apple Macos Monterey vulnerabilities

CVE-2023-32441 [HIGH] CVE-2023-32441: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-32441 Component: Kernel Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.

CVE-2023-2610 [HIGH] CVE-2023-2610: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-2610 Component: CVE-2023-2610

CVE-2023-42832 [HIGH] CVE-2023-42832: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-42832 Component: Software Update Impact: An app may be able to gain root privileges Description: A race condition was addressed with improved state handling.

CVE-2023-32364 [HIGH] CVE-2023-32364: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-32364 Component: AppSandbox Impact: A sandboxed process may be able to circumvent sandbox restrictions Description: A logic issue was addressed with improved restrictions.

CVE-2023-38590 [HIGH] CVE-2023-38590: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-38590 Component: Kernel Impact: A remote user may be able to cause unexpected system termination or corrupt kernel memory Description: A buffer overflow issue was addressed with improved memory handling.

CVE-2023-32443 [HIGH] CVE-2023-32443: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-32443 Component: Shortcuts Impact: A shortcut may be able to modify sensitive Shortcuts app settings Description: An access issue was addressed with improved access restrictions.

CVE-2023-32433 [HIGH] CVE-2023-32433: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-32433 Component: Kernel Impact: An app may be able to execute arbitrary code with kernel privileges Description: A use-after-free issue was addressed with improved memory management.

CVE-2023-32418 [HIGH] CVE-2023-32418: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-32418 Component: Grapher Impact: Processing a file may lead to unexpected app termination or arbitrary code execution Description: The issue was addressed with improved checks.

CVE-2023-38571 [HIGH] CVE-2023-38571: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-38571 Component: Music Impact: An app may be able to bypass Privacy preferences Description: This issue was addressed with improved validation of symlinks.

CVE-2023-40440 [HIGH] CVE-2023-40440: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-40440 Component: Mail Impact: A S/MIME encrypted email may be inadvertently sent unencrypted Description: This issue was addressed with improved state management of S/MIME encrypted emails.

CVE-2023-41990 [HIGH] CVE-2023-41990: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-41990 Component: FontParser Impact: Processing a font file may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7.1. Description: The issue was addressed with improved handling of caches.

CVE-2023-35993 [HIGH] CVE-2023-35993: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-35993 Component: Kernel Impact: An app may be able to execute arbitrary code with kernel privileges Description: A use-after-free issue was addressed with improved memory management.

CVE-2023-36854 [HIGH] CVE-2023-36854: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-36854 Component: Grapher Impact: Processing a file may lead to unexpected app termination or arbitrary code execution Description: The issue was addressed with improved checks.

CVE-2023-38259 [MEDIUM] CVE-2023-38259: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-38259 Component: PackageKit Impact: An app may be able to access user-sensitive data Description: A logic issue was addressed with improved restrictions.

CVE-2023-28321 [MEDIUM] CVE-2023-28321: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-28321 Component: CVE-2023-28321

CVE-2023-38602 [MEDIUM] CVE-2023-38602: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-38602 Component: PackageKit Impact: An app may be able to modify protected parts of the file system Description: A permissions issue was addressed with additional restrictions.

CVE-2023-1916 [MEDIUM] CVE-2023-1916: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-1916 Component: CVE-2023-1916 Impact: An app may cause unexpected app termination or arbitrary code execution Description: A memory corruption issue was addressed with improved validation.

CVE-2023-38258 [MEDIUM] CVE-2023-38258: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-38258 Component: Model I/O Impact: Processing a 3D model may result in disclosure of process memory Description: The issue was addressed with improved checks.

CVE-2023-32429 [MEDIUM] CVE-2023-32429: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-32429 Component: SystemMigration Impact: An app may be able to bypass Privacy preferences Description: The issue was addressed with improved checks.

CVE-2023-1801 [MEDIUM] CVE-2023-1801: macOS Monterey 12.6.8 Apple Security Update: About the security content of macOS Monterey 12.6.8 Product: macOS Monterey Version: 12.6.8 CVE: CVE-2023-1801 Component: CVE-2023-1801