Apple Macos Sonoma vulnerabilities

CVE-2023-41063 [HIGH] CVE-2023-41063: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-41063 Component: Pro Res Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.

CVE-2023-35074 [HIGH] CVE-2023-35074: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-35074 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: The issue was addressed with improved memory handling.

CVE-2023-38610 [HIGH] CVE-2023-38610: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-38610 Component: Wi-Fi Impact: An app may be able to cause unexpected system termination or write kernel memory Description: A memory corruption issue was addressed by removing the vulnerable code.

CVE-2023-42977 [HIGH] CVE-2023-42977: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42977 Component: Power Services Impact: An app may be able to break out of its sandbox Description: A path handling issue was addressed with improved validation.

CVE-2023-41060 [HIGH] CVE-2023-41060: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-41060 Component: Kernel Impact: A remote user may be able to cause kernel code execution Description: A type confusion issue was addressed with improved checks.

CVE-2023-40448 [HIGH] CVE-2023-40448: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40448 Component: App Store Impact: A remote attacker may be able to break out of Web Content sandbox Description: The issue was addressed with improved handling of protocols.

CVE-2023-42876 [HIGH] CVE-2023-42876: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42876 Component: BOM Impact: Processing a file may lead to a denial-of-service or potentially disclose memory contents Description: The issue was addressed with improved bounds checks.

CVE-2023-42833 [HIGH] CVE-2023-42833: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42833 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: A correctness issue was addressed with improved checks.

CVE-2023-42871 [HIGH] CVE-2023-42871: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42871 Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.

CVE-2023-41076 [HIGH] CVE-2023-41076: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-41076 Component: Windows Installer Impact: An app may be able to elevate privileges Description: This issue was addressed by removing the vulnerable code.

CVE-2023-40425 [MEDIUM] CVE-2023-40425: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40425 Component: Sandbox Impact: An app with root privileges may be able to access private information Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2023-42934 [MEDIUM] CVE-2023-42934: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42934 Component: Photos Storage Impact: An app with root privileges may be able to access private information Description: An information disclosure issue was addressed by removing the vulnerable code.

CVE-2023-41067 [MEDIUM] CVE-2023-41067: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-41067 Component: LaunchServices Impact: An app may bypass Gatekeeper checks Description: A logic issue was addressed with improved checks.

CVE-2023-40422 [MEDIUM] CVE-2023-40422: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40422 Component: QuartzCore Impact: An app may be able to cause a denial-of-service Description: The issue was addressed with improved memory handling.

CVE-2023-41078 [MEDIUM] CVE-2023-41078: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-41078 Component: Screen Sharing Impact: An app may be able to bypass certain Privacy preferences Description: An authorization issue was addressed with improved state management.

CVE-2023-32421 [MEDIUM] CVE-2023-32421: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-32421 Component: Messages Impact: An app may be able to observe unprotected user data Description: A privacy issue was addressed with improved handling of temporary files.

CVE-2023-23495 [MEDIUM] CVE-2023-23495: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-23495 Component: Graphics Drivers Impact: An app may be able to execute arbitrary code with kernel privileges Description: A race condition was addressed with improved state handling.

CVE-2023-38596 [MEDIUM] CVE-2023-38596: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-38596 Component: CFNetwork Impact: An app may fail to enforce App Transport Security Description: The issue was addressed with improved handling of protocols.

CVE-2023-41986 [MEDIUM] CVE-2023-41986: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-41986 Component: Music Impact: An app may be able to modify protected parts of the file system Description: The issue was addressed with improved checks.

CVE-2023-40417 [MEDIUM] CVE-2023-40417: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40417 Component: Safari Impact: Visiting a website that frames malicious content may lead to UI spoofing Description: A window management issue was addressed with improved state management.