Apple Macos Ventura vulnerabilities

CVE-2023-23542 [MEDIUM] CVE-2023-23542: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-23542 Component: System Settings Impact: An app may be able to access user-sensitive data Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2023-28192 [MEDIUM] CVE-2023-28192: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-28192 Component: System Settings Impact: An app may be able to read sensitive location information Description: A permissions issue was addressed with improved validation.

CVE-2023-28190 [MEDIUM] CVE-2023-28190: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-28190 Component: FaceTime Impact: An app may be able to access user-sensitive data Description: A privacy issue was addressed by moving sensitive data to a more secure location.

CVE-2023-27929 [MEDIUM] CVE-2023-27929: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-27929 Component: ImageIO Impact: Processing a maliciously crafted image may result in disclosure of process memory Description: An out-of-bounds read was addressed with improved input validation.

CVE-2023-42862 [MEDIUM] CVE-2023-42862: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-42862 Component: ImageIO Impact: Processing an image may result in disclosure of process memory Description: An out-of-bounds read was addressed with improved input validation.

CVE-2023-27947 [MEDIUM] CVE-2023-27947: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-27947 Component: ImageIO Impact: Processing an image may result in disclosure of process memory Description: An out-of-bounds read was addressed with improved input validation.

CVE-2023-27943 [MEDIUM] CVE-2023-27943: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-27943 Component: LaunchServices Impact: Files downloaded from the internet may not have the quarantine flag applied Description: This issue was addressed with improved checks.

CVE-2023-28207 [MEDIUM] CVE-2023-28207: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-28207 Component: AppleMobileFileIntegrity Impact: A plug-in may be able to inherit app permissions and access user data Description: The issue was addressed with improved checks.

CVE-2023-27954 [MEDIUM] CVE-2023-27954: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-27954 Component: WebKit Impact: A website may be able to track sensitive user information Description: The issue was addressed by removing origin information.

CVE-2023-28200 [MEDIUM] CVE-2023-28200: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-28200 Component: Kernel Impact: An app may be able to disclose kernel memory Description: A validation issue was addressed with improved input sanitization.

CVE-2023-27955 [MEDIUM] CVE-2023-27955: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-27955 Component: ColorSync Impact: An app may be able to read arbitrary files Description: The issue was addressed with improved checks.

CVE-2023-27939 [MEDIUM] CVE-2023-27939: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-27939 Component: ImageIO Impact: Processing an image may result in disclosure of process memory Description: An out-of-bounds read was addressed with improved input validation.

CVE-2023-27953 [MEDIUM] CVE-2023-27953: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-27953 Component: CVE-2022-43552 Impact: A remote attacker may be able to cause unexpected app termination or arbitrary code execution Description: A memory initialization issue was addressed.

CVE-2023-23537 [MEDIUM] CVE-2023-23537: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-23537 Component: Find My Impact: An app may be able to read sensitive location information Description: A privacy issue was addressed with improved private data redaction for log entries.

CVE-2023-27962 [MEDIUM] CVE-2023-27962: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-27962 Component: PackageKit Impact: An app may be able to modify protected parts of the file system Description: A logic issue was addressed with improved checks.

CVE-2023-27966 [MEDIUM] CVE-2023-27966: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-27966 Component: SharedFileList Impact: An app may be able to break out of its sandbox Description: The issue was addressed with improved checks.

CVE-2023-27934 [MEDIUM] CVE-2023-27934: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-27934 Component: CVE-2022-43552 Impact: A remote attacker may be able to cause unexpected app termination or arbitrary code execution Description: A memory initialization issue was addressed.

CVE-2023-28189 [MEDIUM] CVE-2023-28189: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-28189 Component: Mail Impact: An app may be able to view sensitive information Description: The issue was addressed with improved checks.

CVE-2022-43552 [MEDIUM] CVE-2022-43552: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2022-43552 Component: CVE-2022-43552 Impact: A remote attacker may be able to cause unexpected app termination or arbitrary code execution Description: A memory initialization issue was addressed.

CVE-2023-27935 [MEDIUM] CVE-2023-27935: macOS Ventura 13.3 Apple Security Update: About the security content of macOS Ventura 13.3 Product: macOS Ventura Version: 13.3 CVE: CVE-2023-27935 Component: CVE-2022-43552 Impact: A remote attacker may be able to cause unexpected app termination or arbitrary code execution Description: A memory initialization issue was addressed.