Apple Macos Sonoma vulnerabilities

CVE-2023-40438 [MEDIUM] CVE-2023-40438: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40438 Component: Core Image Impact: An app may be able to access edited photos saved to a temporary directory Description: An issue was addressed with improved handling of temporary files.

CVE-2023-40391 [MEDIUM] CVE-2023-40391: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40391 Component: GPU Drivers Impact: An app may be able to disclose kernel memory Description: The issue was addressed with improved memory handling.

CVE-2023-41077 [MEDIUM] CVE-2023-41077: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-41077 Component: Image Capture Impact: An app may be able to access protected user data Description: The issue was addressed with improved checks.

CVE-2023-40420 [MEDIUM] CVE-2023-40420: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40420 Component: CoreAnimation Impact: Processing web content may lead to a denial-of-service Description: The issue was addressed with improved memory handling.

CVE-2023-40450 [MEDIUM] CVE-2023-40450: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40450 Component: System Preferences Impact: An app may bypass Gatekeeper checks Description: The issue was addressed with improved checks.

CVE-2023-40385 [MEDIUM] CVE-2023-40385: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40385 Component: WebKit Impact: A remote attacker may be able to view leaked DNS queries with Private Relay turned on Description: This issue was addressed by removing the vulnerable code.

CVE-2023-40410 [MEDIUM] CVE-2023-40410: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40410 Impact: An app may be able to disclose kernel memory Description: An out-of-bounds read was addressed with improved input validation.

CVE-2023-42872 [MEDIUM] CVE-2023-42872: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42872 Component: AppleMobileFileIntegrity Impact: An app may be able to access sensitive user data Description: The issue was addressed with additional permissions checks.

CVE-2023-42943 [MEDIUM] CVE-2023-42943: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42943 Component: Clock Impact: An app may be able to read sensitive location information Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2023-40429 [MEDIUM] CVE-2023-40429: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40429 Component: Kernel Impact: An app may be able to access sensitive user data Description: A permissions issue was addressed with improved validation.

CVE-2023-41968 [MEDIUM] CVE-2023-41968: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-41968 Component: StorageKit Impact: An app may be able to read arbitrary files Description: This issue was addressed with improved validation of symlinks.

CVE-2023-42961 [MEDIUM] CVE-2023-42961: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42961 Component: Intents Impact: A sandboxed process may be able to circumvent sandbox restrictions Description: A path handling issue was addressed with improved validation.

CVE-2023-40388 [MEDIUM] CVE-2023-40388: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40388 Component: Safari Impact: Safari may save photos to an unprotected location Description: A privacy issue was addressed with improved handling of temporary files.

CVE-2023-41987 [MEDIUM] CVE-2023-41987: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-41987 Component: Printing Impact: An app may be able to access sensitive user data Description: This issue was addressed with improved checks.

CVE-2023-40426 [MEDIUM] CVE-2023-40426: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40426 Component: Bluetooth Impact: An app may be able to bypass certain Privacy preferences Description: A permissions issue was addressed with additional restrictions.

CVE-2023-40430 [MEDIUM] CVE-2023-40430: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40430 Component: Sandbox Impact: An app may be able to access removable volumes without user consent Description: A logic issue was addressed with improved checks.

CVE-2023-42929 [MEDIUM] CVE-2023-42929: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42929 Component: AppSandbox Impact: An app may be able to access protected user data Description: The issue was addressed with improved checks.

CVE-2023-40402 [MEDIUM] CVE-2023-40402: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40402 Component: Bluetooth Impact: An app may be able to access sensitive user data Description: A permissions issue was addressed with additional restrictions.

CVE-2023-42918 [MEDIUM] CVE-2023-42918: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42918 Component: Model I/O Impact: A sandboxed process may be able to circumvent sandbox restrictions Description: A permissions issue was addressed with additional restrictions.

CVE-2023-39233 [MEDIUM] CVE-2023-39233: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-39233 Component: Safari Impact: Processing web content may disclose sensitive information Description: The issue was addressed with improved checks.