Apple Macos Sonoma vulnerabilities
959 known vulnerabilities affecting apple/macos_sonoma.
Total CVEs
959
CISA KEV
11
actively exploited
Public exploits
3
Exploited in wild
6
Severity breakdown
CRITICAL73HIGH289MEDIUM533LOW63UNKNOWN1
Vulnerabilities
Page 39 of 48
CVE-2023-42914MEDIUMCVSS 6.3v14.22023-12-11
CVE-2023-42914 [MEDIUM] CVE-2023-42914: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2023-42914
Component: Kernel
Impact: An app may be able to break out of its sandbox
Description: The issue was addressed with improved memory handling.
apple
CVE-2023-42884MEDIUMCVSS 5.5v14.22023-12-11
CVE-2023-42884 [MEDIUM] CVE-2023-42884: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2023-42884
Component: AVEVideoEncoder
Impact: An app may be able to disclose kernel memory
Description: This issue was addressed with improved redaction of sensitive information.
apple
CVE-2023-42930MEDIUMCVSS 5.5v14.22023-12-11
CVE-2023-42930 [MEDIUM] CVE-2023-42930: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2023-42930
Component: Shell
Impact: An app may be able to modify protected parts of the file system
Description: This issue was addressed with improved checks.
apple
CVE-2023-45866MEDIUMCVSS 6.3v14.22023-12-11
CVE-2023-45866 [MEDIUM] CVE-2023-45866: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2023-45866
Component: Bluetooth
Impact: An attacker in a privileged network position may be able to inject keystrokes by spoofing a keyboard
Description: The issue was addressed with improved checks.
apple
CVE-2020-19185MEDIUMCVSS 6.5v14.22023-12-11
CVE-2020-19185 [MEDIUM] CVE-2020-19185: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2020-19185
Component: CVE-2020-19185
apple
CVE-2020-19190MEDIUMCVSS 6.5v14.22023-12-11
CVE-2020-19190 [MEDIUM] CVE-2020-19190: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2020-19190
Component: CVE-2020-19190
apple
CVE-2023-42898MEDIUMCVSS 5.5v14.22023-12-11
CVE-2023-42898 [MEDIUM] CVE-2023-42898: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2023-42898
Component: ImageIO
Impact: Processing an image may lead to arbitrary code execution
Description: The issue was addressed with improved memory handling.
apple
CVE-2023-42894MEDIUMCVSS 5.5v14.22023-12-11
CVE-2023-42894 [MEDIUM] CVE-2023-42894: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2023-42894
Component: AppleEvents
Impact: An app may be able to access information about a user's contacts
Description: This issue was addressed with improved redaction of sensitive information.
apple
CVE-2023-42883MEDIUMCVSS 5.5v14.22023-12-11
CVE-2023-42883 [MEDIUM] CVE-2023-42883: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2023-42883
Component: WebKit
Impact: Processing an image may lead to a denial-of-service
Description: The issue was addressed with improved memory handling.
apple
CVE-2023-42919MEDIUMCVSS 5.5v14.22023-12-11
CVE-2023-42919 [MEDIUM] CVE-2023-42919: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2023-42919
Component: Accounts
Impact: An app may be able to access sensitive user data
Description: A privacy issue was addressed with improved private data redaction for log entries.
apple
CVE-2023-42924MEDIUMCVSS 5.5v14.22023-12-11
CVE-2023-42924 [MEDIUM] CVE-2023-42924: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2023-42924
Component: Archive Utility
Impact: An app may be able to access sensitive user data
Description: A logic issue was addressed with improved checks.
apple
CVE-2020-19189MEDIUMCVSS 6.5v14.22023-12-11
CVE-2020-19189 [MEDIUM] CVE-2020-19189: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2020-19189
Component: CVE-2020-19189
apple
CVE-2023-42932MEDIUMCVSS 5.5v14.22023-12-11
CVE-2023-42932 [MEDIUM] CVE-2023-42932: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2023-42932
Component: TCC
Impact: An app may be able to access protected user data
Description: A logic issue was addressed with improved checks.
apple
CVE-2020-19188MEDIUMCVSS 6.5v14.22023-12-11
CVE-2020-19188 [MEDIUM] CVE-2020-19188: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2020-19188
Component: CVE-2020-19188
apple
CVE-2023-42937MEDIUMCVSS 5.5v14.22023-12-11
CVE-2023-42937 [MEDIUM] CVE-2023-42937: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2023-42937
Component: Accessibility
Impact: An app may be able to access sensitive user data
Description: A privacy issue was addressed with improved private data redaction for log entries.
apple
CVE-2023-42887MEDIUMCVSS 6.3v14.22023-12-11
CVE-2023-42887 [MEDIUM] CVE-2023-42887: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2023-42887
Component: NSOpenPanel
Impact: An app may be able to read arbitrary files
Description: An access issue was addressed with additional sandbox restrictions.
apple
CVE-2020-19187MEDIUMCVSS 6.5v14.22023-12-11
CVE-2020-19187 [MEDIUM] CVE-2020-19187: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2020-19187
Component: CVE-2020-19187
apple
CVE-2023-38546LOWCVSS 3.7v14.22023-12-11
CVE-2023-38546 [LOW] CVE-2023-38546: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2023-38546
Component: CVE-2023-38546
apple
CVE-2023-42874LOWCVSS 2.4v14.22023-12-11
CVE-2023-42874 [LOW] CVE-2023-42874: macOS Sonoma 14.2
Apple Security Update: About the security content of macOS Sonoma 14.2
Product: macOS Sonoma
Version: 14.2
CVE: CVE-2023-42874
Component: Accessibility
Impact: Secure text fields may be displayed via the Accessibility Keyboard when using a physical keyboard
Description: This issue was addressed with improved state management.
apple
CVE-2023-42917HIGHCVSS 8.8KEVv14.1.22023-11-30
CVE-2023-42917 [HIGH] CVE-2023-42917: macOS Sonoma 14.1.2
Apple Security Update: About the security content of macOS Sonoma 14.1.2
Product: macOS Sonoma
Version: 14.1.2
CVE: CVE-2023-42917
Component: WebKit
Impact: Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited against versions of iOS before iOS 16.7.1.
Description: A memory corruption vulnerability was addressed with improved locking.
apple