Apple Macos Sonoma vulnerabilities

CVE-2023-42983 [MEDIUM] CVE-2023-42983: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42983 Component: Model I/O Impact: Processing a file may lead to a denial-of-service or potentially disclose memory contents Description: The issue was addressed with improved checks.

CVE-2023-41994 [MEDIUM] CVE-2023-41994: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-41994 Component: CoreMedia Impact: A camera extension may be able to access the camera view from apps other than the app for which it was granted permission Description: A logic issue was addressed with improved checks

CVE-2023-38614 [MEDIUM] CVE-2023-38614: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-38614 Component: TCC Impact: An app may be able to access sensitive user data Description: A permissions issue was addressed with additional restrictions.

CVE-2023-40399 [MEDIUM] CVE-2023-40399: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40399 Impact: An app may be able to disclose kernel memory Description: The issue was addressed with improved memory handling.

CVE-2023-38612 [LOW] CVE-2023-38612: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-38612 Component: Ask to Buy Impact: An app may be able to access protected user data Description: The issue was addressed with improved checks.

CVE-2023-42949 [LOW] CVE-2023-42949: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42949 Component: Photos Impact: An app may be able to access edited photos saved to a temporary directory Description: This issue was addressed with improved data protection.

CVE-2023-42969 [LOW] CVE-2023-42969: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42969 Impact: An app may be able to break out of its sandbox Description: The issue was addressed with improved handling of caches.

CVE-2023-40395 [LOW] CVE-2023-40395: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40395 Component: Game Center Impact: An app may be able to access contacts Description: The issue was addressed with improved handling of caches.

CVE-2023-42948 [LOW] CVE-2023-42948: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42948 Component: System Settings Impact: A Wi-Fi password may not be deleted when activating a Mac in macOS Recovery Description: This issue was addressed through improved state management.

CVE-2023-41065 [LOW] CVE-2023-41065: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-41065 Component: BOM Impact: Processing a file may lead to a denial-of-service or potentially disclose memory contents Description: The issue was addressed with improved bounds checks.

CVE-2023-29497 [LOW] CVE-2023-29497: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-29497 Component: Calendar Impact: An app may be able to access calendar data saved to a temporary directory Description: A privacy issue was addressed with improved handling of temporary files.

CVE-2023-40386 [LOW] CVE-2023-40386: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40386 Component: Notes Impact: An app may be able to access Notes attachments Description: A privacy issue was addressed with improved handling of temporary files.

CVE-2023-40434 [LOW] CVE-2023-40434: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40434 Component: Graphics Drivers Impact: An app may be able to execute arbitrary code with kernel privileges Description: A race condition was addressed with improved state handling.

CVE-2023-42957 [LOW] CVE-2023-42957: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42957 Component: Maps Impact: An app may be able to read sensitive location information Description: A permissions issue was addressed with additional restrictions.

CVE-2023-35990 [LOW] CVE-2023-35990: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-35990 Component: Safari Impact: An app may be able to identify what other apps a user has installed Description: The issue was addressed with improved checks.

CVE-2023-37448 [LOW] CVE-2023-37448: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-37448 Component: Power Management Impact: A user may be able to view restricted content from the lock screen Description: A lock screen issue was addressed with improved state management.

CVE-2023-42925 [LOW] CVE-2023-42925: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-42925 Component: AppSandbox Impact: An app may be able to access Notes attachments Description: The issue was addressed with improved restriction of data container access.

CVE-2023-40427 [LOW] CVE-2023-40427: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40427 Component: Maps Impact: An app may be able to read sensitive location information Description: The issue was addressed with improved handling of caches.

CVE-2023-40384 [LOW] CVE-2023-40384: macOS Sonoma 14 Apple Security Update: About the security content of macOS Sonoma 14 Product: macOS Sonoma Version: 14 CVE: CVE-2023-40384 Component: Airport Impact: An app may be able to read sensitive location information Description: A permissions issue was addressed with improved redaction of sensitive information.