Apple Macos Ventura vulnerabilities

980 known vulnerabilities affecting apple/macos_ventura.

Total CVEs
980
CISA KEV
24
actively exploited
Public exploits
4
Exploited in wild
20
Severity breakdown
CRITICAL75HIGH370MEDIUM484LOW48UNKNOWN3

Vulnerabilities

Page 27 of 49
CVE-2023-42832HIGHCVSS 7.0v13.52023-07-24
CVE-2023-42832 [HIGH] CVE-2023-42832: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-42832 Component: Software Update Impact: An app may be able to gain root privileges Description: A race condition was addressed with improved state handling.
apple
CVE-2023-38616HIGHCVSS 7.0v13.52023-07-24
CVE-2023-38616 [HIGH] CVE-2023-38616: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-38616 Component: AMD Impact: An app may be able to execute arbitrary code with kernel privileges Description: A race condition was addressed with improved state handling.
apple
CVE-2023-38601HIGHCVSS 7.5v13.52023-07-24
CVE-2023-38601 [HIGH] CVE-2023-38601: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-38601 Component: Net-SNMP Impact: An app may be able to modify protected parts of the file system Description: This issue was addressed by removing the vulnerable code.
apple
CVE-2023-38592HIGHCVSS 8.8v13.52023-07-24
CVE-2023-38592 [HIGH] CVE-2023-38592: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-38592 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: A logic issue was addressed with improved restrictions.
apple
CVE-2023-37450HIGHCVSS 8.8KEVv13.52023-07-24
CVE-2023-37450 [HIGH] CVE-2023-37450: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-37450 Component: WebKit Impact: Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited. Description: The issue was addressed with improved checks.
apple
CVE-2023-36854HIGHCVSS 7.8v13.52023-07-24
CVE-2023-36854 [HIGH] CVE-2023-36854: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-36854 Component: Grapher Impact: Processing a file may lead to unexpected app termination or arbitrary code execution Description: The issue was addressed with improved checks.
apple
CVE-2023-38572HIGHCVSS 7.5v13.52023-07-24
CVE-2023-38572 [HIGH] CVE-2023-38572: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-38572 Component: WebKit Impact: A website may be able to bypass Same Origin Policy Description: The issue was addressed with improved checks.
apple
CVE-2023-32441HIGHCVSS 7.8v13.52023-07-24
CVE-2023-32441 [HIGH] CVE-2023-32441: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-32441 Component: Kernel Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.
apple
CVE-2023-40440HIGHCVSS 7.5v13.52023-07-24
CVE-2023-40440 [HIGH] CVE-2023-40440: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-40440 Component: Mail Impact: A S/MIME encrypted email may be inadvertently sent unencrypted Description: This issue was addressed with improved state management of S/MIME encrypted emails.
apple
CVE-2023-29491HIGHCVSS 7.8v13.52023-07-24
CVE-2023-29491 [HIGH] CVE-2023-29491: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-29491 Component: Music Impact: An app may be able to bypass Privacy preferences Description: This issue was addressed with improved validation of symlinks.
apple
CVE-2023-32418HIGHCVSS 7.8v13.52023-07-24
CVE-2023-32418 [HIGH] CVE-2023-32418: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-32418 Component: Grapher Impact: Processing a file may lead to unexpected app termination or arbitrary code execution Description: The issue was addressed with improved checks.
apple
CVE-2023-38590HIGHCVSS 8.8v13.52023-07-24
CVE-2023-38590 [HIGH] CVE-2023-38590: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-38590 Component: Kernel Impact: A remote user may be able to cause unexpected system termination or corrupt kernel memory Description: A buffer overflow issue was addressed with improved memory handling.
apple
CVE-2023-38580HIGHCVSS 7.8v13.52023-07-24
CVE-2023-38580 [HIGH] CVE-2023-38580: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-38580 Impact: An app may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling.
apple
CVE-2023-38594HIGHCVSS 8.8v13.52023-07-24
CVE-2023-38594 [HIGH] CVE-2023-38594: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-38594 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: The issue was addressed with improved checks.
apple
CVE-2023-38571HIGHCVSS 7.5v13.52023-07-24
CVE-2023-38571 [HIGH] CVE-2023-38571: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-38571 Component: Music Impact: An app may be able to bypass Privacy preferences Description: This issue was addressed with improved validation of symlinks.
apple
CVE-2023-32444HIGHCVSS 7.5v13.52023-07-24
CVE-2023-32444 [HIGH] CVE-2023-32444: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-32444 Component: NSSpellChecker Impact: A sandboxed process may be able to circumvent sandbox restrictions Description: A logic issue was addressed with improved validation.
apple
CVE-2023-42866HIGHCVSS 8.8v13.52023-07-24
CVE-2023-42866 [HIGH] CVE-2023-42866: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-42866 Component: WebKit Impact: Processing web content may lead to arbitrary code execution Description: The issue was addressed with improved memory handling.
apple
CVE-2023-32654MEDIUMCVSS 6.5v13.52023-07-24
CVE-2023-32654 [MEDIUM] CVE-2023-32654: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-32654 Component: Time Zone Impact: A user may be able to read information belonging to another user Description: A logic issue was addressed with improved state management.
apple
CVE-2022-3970MEDIUMCVSS 6.3v13.52023-07-24
CVE-2022-3970 [MEDIUM] CVE-2022-3970: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2022-3970 Component: ImageIO Impact: Processing a maliciously crafted image may lead to a denial of service Description: The issue was addressed with improved memory handling.
apple
CVE-2023-2426MEDIUMCVSS 5.5v13.52023-07-24
CVE-2023-2426 [MEDIUM] CVE-2023-2426: macOS Ventura 13.5 Apple Security Update: About the security content of macOS Ventura 13.5 Product: macOS Ventura Version: 13.5 CVE: CVE-2023-2426 Component: CVE-2023-2426
apple
← Previous27 / 49Next →