Vulnerability-Lookup

CVE-2023-42943 (GCVE-0-2023-42943)

Vulnerability from cvelistv5 – Published: 2024-07-29 20:21 – Updated: 2025-03-15 15:07

Summary

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14. An app may be able to read sensitive location information.

Severity ?

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE

An app may be able to read sensitive location information

Assigner

apple

References

1 reference

URL	Tags
https://support.apple.com/en-us/HT213940

Impacted products

1 product

Vendor	Product	Version
Apple	macOS	Affected: unspecified , < 14 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "LOCAL",
              "availabilityImpact": "NONE",
              "baseScore": 5.5,
              "baseSeverity": "MEDIUM",
              "confidentialityImpact": "HIGH",
              "integrityImpact": "NONE",
              "privilegesRequired": "LOW",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2023-42943",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-30T14:19:08.015321Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "problemTypes": [
          {
            "descriptions": [
              {
                "cweId": "CWE-125",
                "description": "CWE-125 Out-of-bounds Read",
                "lang": "en",
                "type": "CWE"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-03-15T15:07:22.076Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T19:37:23.158Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.apple.com/en-us/HT213940"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "macOS",
          "vendor": "Apple",
          "versions": [
            {
              "lessThan": "14",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14. An app may be able to read sensitive location information."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "An app may be able to read sensitive location information",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-07-29T20:21:03.894Z",
        "orgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
        "shortName": "apple"
      },
      "references": [
        {
          "url": "https://support.apple.com/en-us/HT213940"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "286789f9-fbc2-4510-9f9a-43facdede74c",
    "assignerShortName": "apple",
    "cveId": "CVE-2023-42943",
    "datePublished": "2024-07-29T20:21:03.894Z",
    "dateReserved": "2023-09-14T19:05:11.472Z",
    "dateUpdated": "2025-03-15T15:07:22.076Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2023-42943",
      "date": "2026-05-18",
      "epss": "0.00224",
      "percentile": "0.44906"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"14.0\", \"matchCriteriaId\": \"7A5DD3D5-FB4F-4313-B873-DCED87FC4605\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14. An app may be able to read sensitive location information.\"}, {\"lang\": \"es\", \"value\": \" Se solucion\\u00f3 un problema de privacidad mejorando la redacci\\u00f3n de datos privados para las entradas de registro. Este problema se solucion\\u00f3 en macOS Sonoma 14. Es posible que una aplicaci\\u00f3n pueda leer informaci\\u00f3n confidencial de ubicaci\\u00f3n.\"}]",
      "id": "CVE-2023-42943",
      "lastModified": "2024-11-21T08:23:34.143",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 5.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 3.6}]}",
      "published": "2024-07-29T21:15:11.740",
      "references": "[{\"url\": \"https://support.apple.com/en-us/HT213940\", \"source\": \"product-security@apple.com\", \"tags\": [\"Release Notes\", \"Vendor Advisory\"]}, {\"url\": \"https://support.apple.com/en-us/HT213940\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\", \"Vendor Advisory\"]}]",
      "sourceIdentifier": "product-security@apple.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-42943\",\"sourceIdentifier\":\"product-security@apple.com\",\"published\":\"2024-07-29T21:15:11.740\",\"lastModified\":\"2025-03-15T15:15:37.137\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14. An app may be able to read sensitive location information.\"},{\"lang\":\"es\",\"value\":\" Se solucion\u00f3 un problema de privacidad mejorando la redacci\u00f3n de datos privados para las entradas de registro. Este problema se solucion\u00f3 en macOS Sonoma 14. Es posible que una aplicaci\u00f3n pueda leer informaci\u00f3n confidencial de ubicaci\u00f3n.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"14.0\",\"matchCriteriaId\":\"7A5DD3D5-FB4F-4313-B873-DCED87FC4605\"}]}]}],\"references\":[{\"url\":\"https://support.apple.com/en-us/HT213940\",\"source\":\"product-security@apple.com\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://support.apple.com/en-us/HT213940\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://support.apple.com/en-us/HT213940\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T19:37:23.158Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-42943\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-07-30T14:19:08.015321Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-125\", \"description\": \"CWE-125 Out-of-bounds Read\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-07-30T14:19:13.082Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"Apple\", \"product\": \"macOS\", \"versions\": [{\"status\": \"affected\", \"version\": \"unspecified\", \"lessThan\": \"14\", \"versionType\": \"custom\"}]}], \"references\": [{\"url\": \"https://support.apple.com/en-us/HT213940\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14. An app may be able to read sensitive location information.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"An app may be able to read sensitive location information\"}]}], \"providerMetadata\": {\"orgId\": \"286789f9-fbc2-4510-9f9a-43facdede74c\", \"shortName\": \"apple\", \"dateUpdated\": \"2024-07-29T20:21:03.894Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-42943\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-03-15T15:07:22.076Z\", \"dateReserved\": \"2023-09-14T19:05:11.472Z\", \"assignerOrgId\": \"286789f9-fbc2-4510-9f9a-43facdede74c\", \"datePublished\": \"2024-07-29T20:21:03.894Z\", \"assignerShortName\": \"apple\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

GHSA-JFH3-2J6G-58QV

Vulnerability from github – Published: 2024-07-29 21:30 – Updated: 2024-08-12 18:30

Details

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14. An app may be able to read sensitive location information.

Severity ?

5.5 (Medium)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2023-42943"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-125"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-07-29T21:15:11Z",
    "severity": "MODERATE"
  },
  "details": "A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14. An app may be able to read sensitive location information.",
  "id": "GHSA-jfh3-2j6g-58qv",
  "modified": "2024-08-12T18:30:45Z",
  "published": "2024-07-29T21:30:54Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-42943"
    },
    {
      "type": "WEB",
      "url": "https://support.apple.com/en-us/HT213940"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
      "type": "CVSS_V3"
    }
  ]
}

WID-SEC-W-2023-2453

Vulnerability from csaf_certbund - Published: 2023-09-26 22:00 - Updated: 2025-04-13 22:00

Summary

Apple macOS: Mehrere Schwachstellen

Severity

Kritisch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.

Angriff: Ein entfernter oder lokaler Angreifer kann mehrere Schwachstellen in Apple macOS ausnutzen, um beliebigen Code auszuführen, Sicherheitsmaßnahmen zu umgehen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuführen, seine Rechte zu erweitern oder Daten zu manipulieren.

Betroffene Betriebssysteme: - MacOS X

CVE-2023-23495

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-29497

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-32361

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-32377

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-32396

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-32421

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-35074

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-35984

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-35990

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-37448

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-38586

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-38596

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-3860

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-38607

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-38615

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-39233

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-39434

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40384

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40386

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40388

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40391

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40393

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40395

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40396

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40399

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40400

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40402

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40403

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40406

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40407

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40409

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40410

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40411

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40412

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40417

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40420

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40422

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40424

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40426

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40427

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40429

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40430

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40432

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40434

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40436

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40438

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40441

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40448

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40450

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40452

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40454

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40455

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-40541

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41063

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41065

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41066

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41067

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41070

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41071

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41073

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41074

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41076

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41078

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41079

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41232

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41968

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41979

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41980

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41981

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41984

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41986

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41987

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41991

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41992

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41993

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41994

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41995

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-41996

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42826

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42876

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42918

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42929

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42933

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42934

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42943

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42948

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42949

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42957

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42959

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42961

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42969

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42970

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42977

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42981

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42982

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

CVE-2023-42983

Affected products

Known affected 3 products

Product	Identifier	Version	Remediation
Apple macOS Ventura <13.6 Apple / macOS		Ventura <13.6
Apple macOS Sonoma <14 Apple / macOS		Sonoma <14
Apple macOS Monterey <12.7 Apple / macOS		Monterey <12.7

References

5 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://support.apple.com/en-us/HT213931	external
https://support.apple.com/en-us/HT213932	external
https://support.apple.com/en-us/HT213940	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "kritisch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter oder lokaler Angreifer kann mehrere Schwachstellen in Apple macOS ausnutzen, um beliebigen Code auszuf\u00fchren, Sicherheitsma\u00dfnahmen zu umgehen, vertrauliche Informationen offenzulegen, einen Denial-of-Service-Zustand herbeizuf\u00fchren, seine Rechte zu erweitern oder Daten zu manipulieren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- MacOS X",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-2453 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2453.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-2453 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2453"
      },
      {
        "category": "external",
        "summary": "Apple Security Advisory vom 2023-09-26",
        "url": "https://support.apple.com/en-us/HT213931"
      },
      {
        "category": "external",
        "summary": "Apple Security Advisory vom 2023-09-26",
        "url": "https://support.apple.com/en-us/HT213932"
      },
      {
        "category": "external",
        "summary": "Apple Security Advisory vom 2023-09-26",
        "url": "https://support.apple.com/en-us/HT213940"
      }
    ],
    "source_lang": "en-US",
    "title": "Apple macOS: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-04-13T22:00:00.000+00:00",
      "generator": {
        "date": "2025-04-14T08:21:12.074+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2023-2453",
      "initial_release_date": "2023-09-26T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-09-26T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-10-25T22:00:00.000+00:00",
          "number": "2",
          "summary": "CVE erg\u00e4nzt"
        },
        {
          "date": "2024-01-22T23:00:00.000+00:00",
          "number": "3",
          "summary": "CVE\u0027s erg\u00e4nzt"
        },
        {
          "date": "2025-04-13T22:00:00.000+00:00",
          "number": "4",
          "summary": "CVE-Nummern erg\u00e4nzt"
        }
      ],
      "status": "final",
      "version": "4"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Ventura \u003c13.6",
                "product": {
                  "name": "Apple macOS Ventura \u003c13.6",
                  "product_id": "T030093"
                }
              },
              {
                "category": "product_version",
                "name": "Ventura 13.6",
                "product": {
                  "name": "Apple macOS Ventura 13.6",
                  "product_id": "T030093-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:apple:mac_os:ventura__13.6"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Monterey \u003c12.7",
                "product": {
                  "name": "Apple macOS Monterey \u003c12.7",
                  "product_id": "T030094"
                }
              },
              {
                "category": "product_version",
                "name": "Monterey 12.7",
                "product": {
                  "name": "Apple macOS Monterey 12.7",
                  "product_id": "T030094-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:apple:mac_os:monterey__12.7"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Sonoma \u003c14",
                "product": {
                  "name": "Apple macOS Sonoma \u003c14",
                  "product_id": "T030095"
                }
              },
              {
                "category": "product_version",
                "name": "Sonoma 14",
                "product": {
                  "name": "Apple macOS Sonoma 14",
                  "product_id": "T030095-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:apple:mac_os:sonoma__14"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "macOS"
          }
        ],
        "category": "vendor",
        "name": "Apple"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-23495",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-23495"
    },
    {
      "cve": "CVE-2023-29497",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-29497"
    },
    {
      "cve": "CVE-2023-32361",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-32361"
    },
    {
      "cve": "CVE-2023-32377",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-32377"
    },
    {
      "cve": "CVE-2023-32396",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-32396"
    },
    {
      "cve": "CVE-2023-32421",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-32421"
    },
    {
      "cve": "CVE-2023-35074",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-35074"
    },
    {
      "cve": "CVE-2023-35984",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-35984"
    },
    {
      "cve": "CVE-2023-35990",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-35990"
    },
    {
      "cve": "CVE-2023-37448",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-37448"
    },
    {
      "cve": "CVE-2023-38586",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-38586"
    },
    {
      "cve": "CVE-2023-38596",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-38596"
    },
    {
      "cve": "CVE-2023-3860",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-3860"
    },
    {
      "cve": "CVE-2023-38607",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-38607"
    },
    {
      "cve": "CVE-2023-38615",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-38615"
    },
    {
      "cve": "CVE-2023-39233",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-39233"
    },
    {
      "cve": "CVE-2023-39434",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-39434"
    },
    {
      "cve": "CVE-2023-40384",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40384"
    },
    {
      "cve": "CVE-2023-40386",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40386"
    },
    {
      "cve": "CVE-2023-40388",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40388"
    },
    {
      "cve": "CVE-2023-40391",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40391"
    },
    {
      "cve": "CVE-2023-40393",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40393"
    },
    {
      "cve": "CVE-2023-40395",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40395"
    },
    {
      "cve": "CVE-2023-40396",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40396"
    },
    {
      "cve": "CVE-2023-40399",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40399"
    },
    {
      "cve": "CVE-2023-40400",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40400"
    },
    {
      "cve": "CVE-2023-40402",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40402"
    },
    {
      "cve": "CVE-2023-40403",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40403"
    },
    {
      "cve": "CVE-2023-40406",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40406"
    },
    {
      "cve": "CVE-2023-40407",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40407"
    },
    {
      "cve": "CVE-2023-40409",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40409"
    },
    {
      "cve": "CVE-2023-40410",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40410"
    },
    {
      "cve": "CVE-2023-40411",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40411"
    },
    {
      "cve": "CVE-2023-40412",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40412"
    },
    {
      "cve": "CVE-2023-40417",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40417"
    },
    {
      "cve": "CVE-2023-40420",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40420"
    },
    {
      "cve": "CVE-2023-40422",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40422"
    },
    {
      "cve": "CVE-2023-40424",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40424"
    },
    {
      "cve": "CVE-2023-40426",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40426"
    },
    {
      "cve": "CVE-2023-40427",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40427"
    },
    {
      "cve": "CVE-2023-40429",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40429"
    },
    {
      "cve": "CVE-2023-40430",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40430"
    },
    {
      "cve": "CVE-2023-40432",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40432"
    },
    {
      "cve": "CVE-2023-40434",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40434"
    },
    {
      "cve": "CVE-2023-40436",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40436"
    },
    {
      "cve": "CVE-2023-40438",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40438"
    },
    {
      "cve": "CVE-2023-40441",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40441"
    },
    {
      "cve": "CVE-2023-40448",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40448"
    },
    {
      "cve": "CVE-2023-40450",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40450"
    },
    {
      "cve": "CVE-2023-40452",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40452"
    },
    {
      "cve": "CVE-2023-40454",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40454"
    },
    {
      "cve": "CVE-2023-40455",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40455"
    },
    {
      "cve": "CVE-2023-40541",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-40541"
    },
    {
      "cve": "CVE-2023-41063",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41063"
    },
    {
      "cve": "CVE-2023-41065",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41065"
    },
    {
      "cve": "CVE-2023-41066",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41066"
    },
    {
      "cve": "CVE-2023-41067",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41067"
    },
    {
      "cve": "CVE-2023-41070",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41070"
    },
    {
      "cve": "CVE-2023-41071",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41071"
    },
    {
      "cve": "CVE-2023-41073",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41073"
    },
    {
      "cve": "CVE-2023-41074",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41074"
    },
    {
      "cve": "CVE-2023-41076",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41076"
    },
    {
      "cve": "CVE-2023-41078",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41078"
    },
    {
      "cve": "CVE-2023-41079",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41079"
    },
    {
      "cve": "CVE-2023-41232",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41232"
    },
    {
      "cve": "CVE-2023-41968",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41968"
    },
    {
      "cve": "CVE-2023-41979",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41979"
    },
    {
      "cve": "CVE-2023-41980",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41980"
    },
    {
      "cve": "CVE-2023-41981",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41981"
    },
    {
      "cve": "CVE-2023-41984",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41984"
    },
    {
      "cve": "CVE-2023-41986",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41986"
    },
    {
      "cve": "CVE-2023-41987",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41987"
    },
    {
      "cve": "CVE-2023-41991",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41991"
    },
    {
      "cve": "CVE-2023-41992",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41992"
    },
    {
      "cve": "CVE-2023-41993",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41993"
    },
    {
      "cve": "CVE-2023-41994",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41994"
    },
    {
      "cve": "CVE-2023-41995",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41995"
    },
    {
      "cve": "CVE-2023-41996",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-41996"
    },
    {
      "cve": "CVE-2023-42826",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42826"
    },
    {
      "cve": "CVE-2023-42876",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42876"
    },
    {
      "cve": "CVE-2023-42918",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42918"
    },
    {
      "cve": "CVE-2023-42929",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42929"
    },
    {
      "cve": "CVE-2023-42933",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42933"
    },
    {
      "cve": "CVE-2023-42934",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42934"
    },
    {
      "cve": "CVE-2023-42943",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42943"
    },
    {
      "cve": "CVE-2023-42948",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42948"
    },
    {
      "cve": "CVE-2023-42949",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42949"
    },
    {
      "cve": "CVE-2023-42957",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42957"
    },
    {
      "cve": "CVE-2023-42959",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42959"
    },
    {
      "cve": "CVE-2023-42961",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42961"
    },
    {
      "cve": "CVE-2023-42969",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42969"
    },
    {
      "cve": "CVE-2023-42970",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42970"
    },
    {
      "cve": "CVE-2023-42977",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42977"
    },
    {
      "cve": "CVE-2023-42981",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42981"
    },
    {
      "cve": "CVE-2023-42982",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42982"
    },
    {
      "cve": "CVE-2023-42983",
      "product_status": {
        "known_affected": [
          "T030093",
          "T030095",
          "T030094"
        ]
      },
      "release_date": "2023-09-26T22:00:00.000+00:00",
      "title": "CVE-2023-42983"
    }
  ]
}

GSD-2023-42943

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.

Aliases

CVE-2023-42943

Aliases

CVE-2023-42943

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-42943",
    "id": "GSD-2023-42943"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-42943"
      ],
      "id": "GSD-2023-42943",
      "modified": "2023-12-13T01:20:21.941678Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2023-42943",
        "STATE": "RESERVED"
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
          }
        ]
      }
    }
  }
}

FKIE_CVE-2023-42943

Vulnerability from fkie_nvd - Published: 2024-07-29 21:15 - Updated: 2025-03-15 15:15

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Summary

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14. An app may be able to read sensitive location information.

References

	URL	Tags
	product-security@apple.com	https://support.apple.com/en-us/HT213940	Release Notes, Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://support.apple.com/en-us/HT213940	Release Notes, Vendor Advisory

Impacted products

	Vendor	Product	Version
	apple	macos	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7A5DD3D5-FB4F-4313-B873-DCED87FC4605",
              "versionEndExcluding": "14.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14. An app may be able to read sensitive location information."
    },
    {
      "lang": "es",
      "value": " Se solucion\u00f3 un problema de privacidad mejorando la redacci\u00f3n de datos privados para las entradas de registro. Este problema se solucion\u00f3 en macOS Sonoma 14. Es posible que una aplicaci\u00f3n pueda leer informaci\u00f3n confidencial de ubicaci\u00f3n."
    }
  ],
  "id": "CVE-2023-42943",
  "lastModified": "2025-03-15T15:15:37.137",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary"
      }
    ]
  },
  "published": "2024-07-29T21:15:11.740",
  "references": [
    {
      "source": "product-security@apple.com",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/en-us/HT213940"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Release Notes",
        "Vendor Advisory"
      ],
      "url": "https://support.apple.com/en-us/HT213940"
    }
  ],
  "sourceIdentifier": "product-security@apple.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-125"
        }
      ],
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "type": "Secondary"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-42943 (GCVE-0-2023-42943)

GHSA-JFH3-2J6G-58QV

WID-SEC-W-2023-2453

GSD-2023-42943

FKIE_CVE-2023-42943

Tags

Sightings

Nomenclature