Apple Macos Ventura vulnerabilities
980 known vulnerabilities affecting apple/macos_ventura.
Total CVEs
980
CISA KEV
24
actively exploited
Public exploits
4
Exploited in wild
20
Severity breakdown
CRITICAL75HIGH370MEDIUM484LOW48UNKNOWN3
Vulnerabilities
Page 18 of 49
CVE-2024-27817HIGHCVSS 7.8v13.6.72024-05-13
CVE-2024-27817 [HIGH] CVE-2024-27817: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27817
Component: CoreMedia
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: The issue was addressed with improved checks.
apple
CVE-2024-40771HIGHCVSS 7.8v13.6.72024-05-13
CVE-2024-40771 [HIGH] CVE-2024-40771: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-40771
Component: AVEVideoEncoder
Impact: An app may be able to execute arbitrary code with kernel privileges
Description: The issue was addressed with improved memory handling.
apple
CVE-2024-27843HIGHCVSS 7.8v13.6.72024-05-13
CVE-2024-27843 [HIGH] CVE-2024-27843: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27843
Component: SharedFileList
Impact: An app may be able to elevate privileges
Description: A logic issue was addressed with improved checks.
apple
CVE-2024-27798HIGHCVSS 7.8v13.6.72024-05-13
CVE-2024-27798 [HIGH] CVE-2024-27798: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27798
Component: StorageKit
Impact: A user may be able to elevate privileges
Description: An authorization issue was addressed with improved state management.
apple
CVE-2024-27802HIGHCVSS 7.8v13.6.72024-05-13
CVE-2024-27802 [HIGH] CVE-2024-27802: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27802
Component: Metal
Impact: Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution
Description: An out-of-bounds read was addressed with improved input validation.
apple
CVE-2024-27855HIGHCVSS 8.8v13.6.72024-05-13
CVE-2024-27855 [HIGH] CVE-2024-27855: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27855
Component: Shortcuts
Impact: A shortcut may be able to use sensitive data with certain actions without prompting the user
Description: The issue was addressed with improved checks.
apple
CVE-2024-27824HIGHCVSS 7.8v13.6.72024-05-13
CVE-2024-27824 [HIGH] CVE-2024-27824: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27824
Component: PackageKit
Impact: An app may be able to elevate privileges
Description: This issue was addressed by removing the vulnerable code.
apple
CVE-2024-23296HIGHCVSS 7.8KEVv13.6.72024-05-13
CVE-2024-23296 [HIGH] CVE-2024-23296: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-23296
Component: CVE-2024-23296
apple
CVE-2024-27831HIGHCVSS 7.8v13.6.72024-05-13
CVE-2024-27831 [HIGH] CVE-2024-27831: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27831
Component: CoreMedia
Impact: Processing a file may lead to unexpected app termination or arbitrary code execution
Description: An out-of-bounds write issue was addressed with improved input validation.
apple
CVE-2024-27796HIGHCVSS 7.8v13.6.72024-05-13
CVE-2024-27796 [HIGH] CVE-2024-27796: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27796
Component: Voice Control
Impact: A user may be able to elevate privileges
Description: The issue was addressed with improved checks.
apple
CVE-2024-27823MEDIUMCVSS 5.9v13.6.72024-05-13
CVE-2024-27823 [MEDIUM] CVE-2024-27823: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27823
Component: Kernel
Impact: An attacker in a privileged network position may be able to spoof network packets
Description: A race condition was addressed with improved locking.
apple
CVE-2024-27789MEDIUMCVSS 5.5v13.6.72024-05-13
CVE-2024-27789 [MEDIUM] CVE-2024-27789: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27789
Component: Foundation
Impact: An app may be able to access user-sensitive data
Description: A logic issue was addressed with improved checks.
apple
CVE-2024-27827MEDIUMCVSS 5.5v13.6.72024-05-13
CVE-2024-27827 [MEDIUM] CVE-2024-27827: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27827
Component: Finder
Impact: An app may be able to read arbitrary files
Description: This issue was addressed through improved state management.
apple
CVE-2024-27810MEDIUMCVSS 5.5v13.6.72024-05-13
CVE-2024-27810 [MEDIUM] CVE-2024-27810: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27810
Component: Maps
Impact: An app may be able to read sensitive location information
Description: A path handling issue was addressed with improved validation.
apple
CVE-2024-27847MEDIUMCVSS 5.5v13.6.72024-05-13
CVE-2024-27847 [MEDIUM] CVE-2024-27847: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27847
Component: Sync Services
Impact: An app may be able to bypass Privacy preferences
Description: This issue was addressed with improved checks
apple
CVE-2024-27805MEDIUMCVSS 5.5v13.6.72024-05-13
CVE-2024-27805 [MEDIUM] CVE-2024-27805: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27805
Component: Core Data
Impact: An app may be able to access sensitive user data
Description: An issue was addressed with improved validation of environment variables.
apple
CVE-2023-42861MEDIUMCVSS 6.5v13.6.72024-05-13
CVE-2023-42861 [MEDIUM] CVE-2023-42861: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2023-42861
Component: Login Window
Impact: An attacker with knowledge of a standard user's credentials can unlock another standard user's locked screen on the same Mac
Description: A logic issue was addressed with improved state management.
apple
CVE-2024-27885MEDIUMCVSS 6.3v13.6.72024-05-13
CVE-2024-27885 [MEDIUM] CVE-2024-27885: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27885
Component: PackageKit
Impact: An app may be able to modify protected parts of the file system
Description: This issue was addressed with improved validation of symlinks.
apple
CVE-2024-27800MEDIUMCVSS 6.5v13.6.72024-05-13
CVE-2024-27800 [MEDIUM] CVE-2024-27800: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27800
Component: Messages
Impact: Processing a maliciously crafted message may lead to a denial-of-service
Description: This issue was addressed by removing the vulnerable code.
apple
CVE-2024-27806MEDIUMCVSS 5.5v13.6.72024-05-13
CVE-2024-27806 [MEDIUM] CVE-2024-27806: macOS Ventura 13.6.7
Apple Security Update: About the security content of macOS Ventura 13.6.7
Product: macOS Ventura
Version: 13.6.7
CVE: CVE-2024-27806
Component: CVE-2024-27806
apple