var-202302-1169
Vulnerability from variot
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, iOS 16.3.1 and iPadOS 16.3.1, macOS Ventura 13.2.1, macOS Big Sur 11.7.5. An app may be able to execute arbitrary code with kernel privileges. apple's iPadOS , iOS , macOS Exists in a vulnerability related to the use of freed memory.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. iOS 16.3.1 and iPadOS 16.3.1. Information about the security content is also available at https://support.apple.com/HT213670.
AMD Available for: macOS Ventura Impact: An app may be able to cause unexpected system termination or write kernel memory Description: A buffer overflow issue was addressed with improved memory handling. CVE-2023-27968: ABC Research s.r.o.
Apple Neural Engine Available for: macOS Ventura Impact: An app may be able to break out of its sandbox Description: This issue was addressed with improved checks. CVE-2023-23532: Mohamed Ghannam (@_simo36)
AppleMobileFileIntegrity Available for: macOS Ventura Impact: A user may gain access to protected parts of the file system Description: The issue was addressed with improved checks. CVE-2023-23527: Mickey Jin (@patch1t)
AppleMobileFileIntegrity Available for: macOS Ventura Impact: An app may be able to access user-sensitive data Description: This issue was addressed by removing the vulnerable code. CVE-2023-27931: Mickey Jin (@patch1t)
Archive Utility Available for: macOS Ventura Impact: An archive may be able to bypass Gatekeeper Description: The issue was addressed with improved checks. CVE-2023-27951: Brandon Dalton of Red Canary and Csaba Fitzl (@theevilbit) of Offensive Security
Calendar Available for: macOS Ventura Impact: Importing a maliciously crafted calendar invitation may exfiltrate user information Description: Multiple validation issues were addressed with improved input sanitization. CVE-2023-27961: Rıza Sabuncu - twitter.com/rizasabuncu
Camera Available for: macOS Ventura Impact: A sandboxed app may be able to determine which app is currently using the camera Description: The issue was addressed with additional restrictions on the observability of app states. CVE-2023-23543: Yiğit Can YILMAZ (@yilmazcanyigit)
Carbon Core Available for: macOS Ventura Impact: Processing a maliciously crafted image may result in disclosure of process memory Description: The issue was addressed with improved checks. CVE-2023-23534: Mickey Jin (@patch1t)
ColorSync Available for: macOS Ventura Impact: An app may be able to read arbitrary files Description: The issue was addressed with improved checks. CVE-2023-27955: JeongOhKyea
CommCenter Available for: macOS Ventura Impact: An app may be able to cause unexpected system termination or write kernel memory Description: An out-of-bounds write issue was addressed with improved input validation. CVE-2023-28181: Tingting Yin of Tsinghua University
curl Available for: macOS Ventura Impact: Multiple issues in curl Description: Multiple issues were addressed by updating curl. CVE-2022-43551 CVE-2022-43552
dcerpc Available for: macOS Ventura Impact: A remote user may be able to cause unexpected app termination or arbitrary code execution Description: A memory initialization issue was addressed. CVE-2023-27934: Aleksandar Nikolic of Cisco Talos
dcerpc Available for: macOS Ventura Impact: A user in a privileged network position may be able to cause a denial-of-service Description: A denial-of-service issue was addressed with improved memory handling. CVE-2023-28180: Aleksandar Nikolic of Cisco Talos
dcerpc Available for: macOS Ventura Impact: A remote user may be able to cause unexpected app termination or arbitrary code execution Description: The issue was addressed with improved bounds checks. CVE-2023-27935: Aleksandar Nikolic of Cisco Talos
dcerpc Available for: macOS Ventura Impact: A remote user may be able to cause unexpected system termination or corrupt kernel memory Description: The issue was addressed with improved memory handling. CVE-2023-27953: Aleksandar Nikolic of Cisco Talos CVE-2023-27958: Aleksandar Nikolic of Cisco Talos
Display Available for: macOS Ventura Impact: An app may be able to execute arbitrary code with kernel privileges Description: A memory corruption issue was addressed with improved state management. CVE-2023-27965: Proteas of Pangu Lab
FaceTime Available for: macOS Ventura Impact: An app may be able to access user-sensitive data Description: A privacy issue was addressed by moving sensitive data to a more secure location. CVE-2023-28190: Joshua Jones
Find My Available for: macOS Ventura Impact: An app may be able to read sensitive location information Description: A privacy issue was addressed with improved private data redaction for log entries. CVE-2023-23537: an anonymous researcher
FontParser Available for: macOS Ventura Impact: Processing a maliciously crafted image may result in disclosure of process memory Description: The issue was addressed with improved memory handling. CVE-2023-27956: Ye Zhang of Baidu Security
Foundation Available for: macOS Ventura Impact: Parsing a maliciously crafted plist may lead to an unexpected app termination or arbitrary code execution Description: An integer overflow was addressed with improved input validation. CVE-2023-27937: an anonymous researcher
iCloud Available for: macOS Ventura Impact: A file from an iCloud shared-by-me folder may be able to bypass Gatekeeper Description: This was addressed with additional checks by Gatekeeper on files downloaded from an iCloud shared-by-me folder. CVE-2023-23526: Jubaer Alnazi of TRS Group of Companies
Identity Services Available for: macOS Ventura Impact: An app may be able to access information about a user’s contacts Description: A privacy issue was addressed with improved private data redaction for log entries. CVE-2023-27928: Csaba Fitzl (@theevilbit) of Offensive Security
ImageIO Available for: macOS Ventura Impact: Processing a maliciously crafted image may result in disclosure of process memory Description: The issue was addressed with improved memory handling. CVE-2023-23535: ryuzaki
ImageIO Available for: macOS Ventura Impact: Processing a maliciously crafted image may result in disclosure of process memory Description: An out-of-bounds read was addressed with improved input validation. CVE-2023-27929: Meysam Firouzi (@R00tkitSMM) of Mbition Mercedes-Benz Innovation Lab and jzhu working with Trend Micro Zero Day Initiative
ImageIO Available for: macOS Ventura Impact: Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution Description: An out-of-bounds read was addressed with improved bounds checking. CVE-2023-27946: Mickey Jin (@patch1t)
ImageIO Available for: macOS Ventura Impact: Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution Description: A buffer overflow issue was addressed with improved memory handling. CVE-2023-23514: Xinru Chi of Pangu Lab, Ned Williamson of Google Project Zero CVE-2023-27969: Adam Doupé of ASU SEFCOM
Kernel Available for: macOS Ventura Impact: An app with root privileges may be able to execute arbitrary code with kernel privileges Description: The issue was addressed with improved memory handling. CVE-2023-27933: sqrtpwn
Kernel Available for: macOS Ventura Impact: An app may be able to disclose kernel memory Description: An out-of-bounds read issue existed that led to the disclosure of kernel memory. CVE-2023-27941: Arsenii Kostromin (0x3c3e)
Kernel Available for: macOS Ventura Impact: An app may be able to disclose kernel memory Description: A validation issue was addressed with improved input sanitization. CVE-2023-28200: Arsenii Kostromin (0x3c3e)
LaunchServices Available for: macOS Ventura Impact: Files downloaded from the internet may not have the quarantine flag applied Description: This issue was addressed with improved checks. CVE-2023-27943: an anonymous researcher, Brandon Dalton, Milan Tenk, and Arthur Valiev
LaunchServices Available for: macOS Ventura Impact: An app may be able to gain root privileges Description: This issue was addressed with improved checks. CVE-2023-23525: Mickey Jin (@patch1t)
Model I/O Available for: macOS Ventura Impact: Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution Description: An out-of-bounds read was addressed with improved input validation. CVE-2023-27949: Mickey Jin (@patch1t)
NetworkExtension Available for: macOS Ventura Impact: A user in a privileged network position may be able to spoof a VPN server that is configured with EAP-only authentication on a device Description: The issue was addressed with improved authentication. CVE-2023-28182: Zhuowei Zhang
PackageKit Available for: macOS Ventura Impact: An app may be able to modify protected parts of the file system Description: A logic issue was addressed with improved checks. CVE-2023-23538: Mickey Jin (@patch1t) CVE-2023-27962: Mickey Jin (@patch1t)
Photos Available for: macOS Ventura Impact: Photos belonging to the Hidden Photos Album could be viewed without authentication through Visual Lookup Description: A logic issue was addressed with improved restrictions. CVE-2023-23523: developStorm
Podcasts Available for: macOS Ventura Impact: An app may be able to access user-sensitive data Description: The issue was addressed with improved checks. CVE-2023-27942: Mickey Jin (@patch1t)
Safari Available for: macOS Ventura Impact: An app may bypass Gatekeeper checks Description: A race condition was addressed with improved locking. CVE-2023-27952: Csaba Fitzl (@theevilbit) of Offensive Security
Sandbox Available for: macOS Ventura Impact: An app may be able to modify protected parts of the file system Description: A logic issue was addressed with improved checks. CVE-2023-23533: Mickey Jin (@patch1t), Koh M. Nakagawa of FFRI Security, Inc., and Csaba Fitzl (@theevilbit) of Offensive Security
Sandbox Available for: macOS Ventura Impact: An app may be able to bypass Privacy preferences Description: A logic issue was addressed with improved validation. CVE-2023-28178: Yiğit Can YILMAZ (@yilmazcanyigit)
Shortcuts Available for: macOS Ventura Impact: A shortcut may be able to use sensitive data with certain actions without prompting the user Description: The issue was addressed with additional permissions checks. CVE-2023-27963: Jubaer Alnazi Jabin of TRS Group Of Companies, and Wenchao Li and Xiaolong Bai of Alibaba Group
System Settings Available for: macOS Ventura Impact: An app may be able to access user-sensitive data Description: A privacy issue was addressed with improved private data redaction for log entries. CVE-2023-23542: an anonymous researcher
System Settings Available for: macOS Ventura Impact: An app may be able to read sensitive location information Description: A permissions issue was addressed with improved validation. CVE-2023-28192: Guilherme Rambo of Best Buddy Apps (rambo.codes)
TCC Available for: macOS Ventura Impact: An app may be able to access user-sensitive data Description: This issue was addressed by removing the vulnerable code. CVE-2023-27931: Mickey Jin (@patch1t)
Vim Available for: macOS Ventura Impact: Multiple issues in Vim Description: Multiple issues were addressed by updating to Vim version 9.0.1191. CVE-2023-0049 CVE-2023-0051 CVE-2023-0054 CVE-2023-0288 CVE-2023-0433 CVE-2023-0512
WebKit Available for: macOS Ventura Impact: Processing maliciously crafted web content may bypass Same Origin Policy Description: This issue was addressed with improved state management. CVE-2023-27932: an anonymous researcher
WebKit Available for: macOS Ventura Impact: A website may be able to track sensitive user information Description: The issue was addressed by removing origin information. CVE-2023-27954: an anonymous researcher
XPC Available for: macOS Ventura Impact: An app may be able to break out of its sandbox Description: This issue was addressed with a new entitlement. CVE-2023-27944: Mickey Jin (@patch1t)
Additional recognition
Activation Lock We would like to acknowledge Christian Mina for their assistance.
AppleScript We would like to acknowledge Mickey Jin (@patch1t) for their assistance.
CFNetwork We would like to acknowledge an anonymous researcher for their assistance.
Control Center We would like to acknowledge an anonymous researcher for their assistance.
CoreServices We would like to acknowledge Mickey Jin (@patch1t) for their assistance.
dcerpc We would like to acknowledge Aleksandar Nikolic of Cisco Talos for their assistance.
FaceTime We would like to acknowledge Sajan Karki for their assistance.
file_cmds We would like to acknowledge Lukas Zronek for their assistance.
Git We would like to acknowledge for their assistance.
Heimdal We would like to acknowledge Evgeny Legerov of Intevydis for their assistance.
ImageIO We would like to acknowledge Meysam Firouzi @R00tkitSMM for their assistance.
Mail We would like to acknowledge Chen Zhang, Fabian Ising of FH Münster University of Applied Sciences, Damian Poddebniak of FH Münster University of Applied Sciences, Tobias Kappert of Münster University of Applied Sciences, Christoph Saatjohann of Münster University of Applied Sciences, Sebast, and Merlin Chlosta of CISPA Helmholtz Center for Information Security for their assistance.
NSOpenPanel We would like to acknowledge Alexandre Colucci (@timacfr) for their assistance.
quarantine We would like to acknowledge Koh M. Nakagawa of FFRI Security, Inc. for their assistance.
Safari Downloads We would like to acknowledge Andrew Gonzalez for their assistance.
WebKit We would like to acknowledge an anonymous researcher for their assistance.
WebKit Web Inspector We would like to acknowledge Dohyun Lee (@l33d0hyun) and crixer (@pwning_me) of SSD Labs for their assistance.
Wi-Fi We would like to acknowledge an anonymous researcher for their assistance.
macOS Ventura 13.3 may be obtained from the Mac App Store or Apple's Software Downloads web site: https://support.apple.com/downloads/ All information is also posted on the Apple Security Updates web site: https://support.apple.com/en-us/HT201222.
This message is signed with Apple's Product Security PGP key, and details are available at: https://www.apple.com/support/security/pgp/ -----BEGIN PGP SIGNATURE-----
iQIzBAEBCAAdFiEEBP+4DupqR5Sgt1DB4RjMIDkeNxkFAmQiHnwACgkQ4RjMIDke NxlDUw/8COhSvqsTrIJtGhMmZJ83+R9pZPGZIhY0eOZbFp+yCFBRYE9IIzv785uM LQ+2ZsBqCtsMp3ZDhYFvEvigGPnCpfnZrd/JBsPXz7O6HfSG2whOIHtSu+LAvOxk OwACJZru6PqmTh4br7QRDHt41E4fP4KZPpAdM7Wbiu6Ikg2h71kp+9CMdliVr7o1 +B1yVUqnihsB1IDs2grNhmuVGWG1bP7fgAON0zQa4HkvqU9p4XlDeohnZ2V9y+3n J8C7agCkos+7aKDrbv72sJ3T5sBe1dozca5pEYZyh0zGhxP8Q6c0zwhiatRY0hKw I6yeFPBQ94ez+qTCj2YU/9Nz0tFQja3UBJw9zyIJr5A/ZiporZCwe8HUp5n3bGAm JZlSM6aNdVjgbrGBjwpHSE2kSv3WpBe8EZhMA1iCbGIxwGWdz23L/Hrnqs7TFqzm kXV0bHIjbO6jNPhm0V+QqZbDCC88H54ovrLuojgW2L562n+vLDb4u3VE5yfAJ9Zk KZCqNPXm0kkSimjF5JExGBTDFpt92XY3cMYItxSCtSnebL+5OmbY90C2OnAjAIwJ qGiD/AEPRgcuJpfMvtydLo0eau5hptR4nqFY1oHEpbWCHfDycz0zhvZaTUHyVIv5 m1X8VhzBgXwKUzjkz7lBLl9R9pebBLU90KXLOJsF8j3bOUS6ddU= =7+Lt -----END PGP SIGNATURE-----
. Apple is aware of a report that this issue may have been actively exploited. Make sure you have an Internet connection and have installed the latest version of iTunes from https://www.apple.com/itunes/ iTunes and Software Update on the device will automatically check Apple's update server on its weekly schedule. When an update is detected, it is downloaded and the option to be installed is presented to the user when the iOS device is docked. We recommend applying the update immediately if possible. Selecting Don't Install will present the option the next time you connect your iOS device. The automatic update process may take up to a week depending on the day that iTunes or the device checks for updates. You may manually obtain the update via the Check for Updates button within iTunes, or the Software Update on your device. To check that the iPhone, iPod touch, or iPad has been updated: * Navigate to Settings * Select General * Select About. The version after applying this update will be "iOS 16.3.1 and iPadOS 16.3.1"
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", "affected_products": { "@id": "https://www.variotdbs.pl/ref/affected_products" }, "configurations": { "@id": "https://www.variotdbs.pl/ref/configurations" }, "credits": { "@id": "https://www.variotdbs.pl/ref/credits" }, "cvss": { "@id": "https://www.variotdbs.pl/ref/cvss/" }, "description": { "@id": "https://www.variotdbs.pl/ref/description/" }, "exploit_availability": { "@id": "https://www.variotdbs.pl/ref/exploit_availability/" }, "external_ids": { "@id": "https://www.variotdbs.pl/ref/external_ids/" }, "iot": { "@id": "https://www.variotdbs.pl/ref/iot/" }, "iot_taxonomy": { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/" }, "patch": { "@id": "https://www.variotdbs.pl/ref/patch/" }, "problemtype_data": { "@id": "https://www.variotdbs.pl/ref/problemtype_data/" }, "references": { "@id": "https://www.variotdbs.pl/ref/references/" }, "sources": { "@id": "https://www.variotdbs.pl/ref/sources/" }, "sources_release_date": { "@id": "https://www.variotdbs.pl/ref/sources_release_date/" }, "sources_update_date": { "@id": "https://www.variotdbs.pl/ref/sources_update_date/" }, "threat_type": { "@id": "https://www.variotdbs.pl/ref/threat_type/" }, "title": { "@id": "https://www.variotdbs.pl/ref/title/" }, "type": { "@id": "https://www.variotdbs.pl/ref/type/" } }, "@id": "https://www.variotdbs.pl/vuln/VAR-202302-1169", "affected_products": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" }, "@id": "https://www.variotdbs.pl/ref/sources" } }, "data": [ { "model": "ipados", "scope": "lt", "trust": 1.0, "vendor": "apple", "version": "16.3.1" }, { "model": "iphone os", "scope": "lt", "trust": 1.0, "vendor": "apple", "version": "16.3.1" }, { "model": "macos", "scope": "gte", "trust": 1.0, "vendor": "apple", "version": "13.0" }, { "model": "macos", "scope": "lt", "trust": 1.0, "vendor": "apple", "version": "13.2.1" }, { "model": "ipados", "scope": null, "trust": 0.8, "vendor": "\u30a2\u30c3\u30d7\u30eb", "version": null }, { "model": "ios", "scope": null, "trust": 0.8, "vendor": "\u30a2\u30c3\u30d7\u30eb", "version": null }, { "model": "macos", "scope": "eq", "trust": 0.8, "vendor": "\u30a2\u30c3\u30d7\u30eb", "version": "13.0 that\u0027s all 13.2.1" } ], "sources": [ { "db": "JVNDB", "id": "JVNDB-2023-004746" }, { "db": "NVD", "id": "CVE-2023-23514" } ] }, "configurations": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", "children": { "@container": "@list" }, "cpe_match": { "@container": "@list" }, "data": { "@container": "@list" }, "nodes": { "@container": "@list" } }, "data": [ { "CVE_data_version": "4.0", "nodes": [ { "children": [], "cpe_match": [ { "cpe23Uri": "cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "13.2.1", "versionStartIncluding": "13.0", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:apple:ipados:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "16.3.1", "vulnerable": true }, { "cpe23Uri": "cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*", "cpe_name": [], "versionEndExcluding": "16.3.1", "vulnerable": true } ], "operator": "OR" } ] } ], "sources": [ { "db": "NVD", "id": "CVE-2023-23514" } ] }, "credits": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/credits#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Apple", "sources": [ { "db": "PACKETSTORM", "id": "171550" }, { "db": "PACKETSTORM", "id": "171544" }, { "db": "PACKETSTORM", "id": "171541" }, { "db": "PACKETSTORM", "id": "170996" }, { "db": "PACKETSTORM", "id": "170990" } ], "trust": 0.5 }, "cve": "CVE-2023-23514", "cvss": { "@context": { "cvssV2": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#" }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2" }, "cvssV3": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#" }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/" }, "severity": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#" }, "@id": "https://www.variotdbs.pl/ref/cvss/severity" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" }, "@id": "https://www.variotdbs.pl/ref/sources" } }, "data": [ { "cvssV2": [], "cvssV3": [ { "attackComplexity": "LOW", "attackVector": "LOCAL", "author": "NVD", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "exploitabilityScore": 1.8, "impactScore": 5.9, "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "trust": 1.0, "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1" }, { "attackComplexity": "Low", "attackVector": "Local", "author": "NVD", "availabilityImpact": "High", "baseScore": 7.8, "baseSeverity": "High", "confidentialityImpact": "High", "exploitabilityScore": null, "id": "CVE-2023-23514", "impactScore": null, "integrityImpact": "High", "privilegesRequired": "None", "scope": "Unchanged", "trust": 0.8, "userInteraction": "Required", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0" } ], "severity": [ { "author": "NVD", "id": "CVE-2023-23514", "trust": 1.8, "value": "HIGH" }, { "author": "CNNVD", "id": "CNNVD-202302-1001", "trust": 0.6, "value": "HIGH" } ] } ], "sources": [ { "db": "JVNDB", "id": "JVNDB-2023-004746" }, { "db": "NVD", "id": "CVE-2023-23514" }, { "db": "CNNVD", "id": "CNNVD-202302-1001" } ] }, "description": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, iOS 16.3.1 and iPadOS 16.3.1, macOS Ventura 13.2.1, macOS Big Sur 11.7.5. An app may be able to execute arbitrary code with kernel privileges. apple\u0027s iPadOS , iOS , macOS Exists in a vulnerability related to the use of freed memory.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. iOS 16.3.1 and iPadOS 16.3.1. \nInformation about the security content is also available at\nhttps://support.apple.com/HT213670. \n\nAMD\nAvailable for: macOS Ventura\nImpact: An app may be able to cause unexpected system termination or\nwrite kernel memory\nDescription: A buffer overflow issue was addressed with improved\nmemory handling. \nCVE-2023-27968: ABC Research s.r.o. \n\nApple Neural Engine\nAvailable for: macOS Ventura\nImpact: An app may be able to break out of its sandbox\nDescription: This issue was addressed with improved checks. \nCVE-2023-23532: Mohamed Ghannam (@_simo36)\n\nAppleMobileFileIntegrity\nAvailable for: macOS Ventura\nImpact: A user may gain access to protected parts of the file system\nDescription: The issue was addressed with improved checks. \nCVE-2023-23527: Mickey Jin (@patch1t)\n\nAppleMobileFileIntegrity\nAvailable for: macOS Ventura\nImpact: An app may be able to access user-sensitive data\nDescription: This issue was addressed by removing the vulnerable\ncode. \nCVE-2023-27931: Mickey Jin (@patch1t)\n\nArchive Utility\nAvailable for: macOS Ventura\nImpact: An archive may be able to bypass Gatekeeper\nDescription: The issue was addressed with improved checks. \nCVE-2023-27951: Brandon Dalton of Red Canary and Csaba Fitzl\n(@theevilbit) of Offensive Security\n\nCalendar\nAvailable for: macOS Ventura\nImpact: Importing a maliciously crafted calendar invitation may\nexfiltrate user information\nDescription: Multiple validation issues were addressed with improved\ninput sanitization. \nCVE-2023-27961: R\u0131za Sabuncu - twitter.com/rizasabuncu\n\nCamera\nAvailable for: macOS Ventura\nImpact: A sandboxed app may be able to determine which app is\ncurrently using the camera\nDescription: The issue was addressed with additional restrictions on\nthe observability of app states. \nCVE-2023-23543: Yi\u011fit Can YILMAZ (@yilmazcanyigit)\n\nCarbon Core\nAvailable for: macOS Ventura\nImpact: Processing a maliciously crafted image may result in\ndisclosure of process memory\nDescription: The issue was addressed with improved checks. \nCVE-2023-23534: Mickey Jin (@patch1t)\n\nColorSync\nAvailable for: macOS Ventura\nImpact: An app may be able to read arbitrary files\nDescription: The issue was addressed with improved checks. \nCVE-2023-27955: JeongOhKyea\n\nCommCenter\nAvailable for: macOS Ventura\nImpact: An app may be able to cause unexpected system termination or\nwrite kernel memory\nDescription: An out-of-bounds write issue was addressed with improved\ninput validation. \nCVE-2023-28181: Tingting Yin of Tsinghua University\n\ncurl\nAvailable for: macOS Ventura\nImpact: Multiple issues in curl\nDescription: Multiple issues were addressed by updating curl. \nCVE-2022-43551\nCVE-2022-43552\n\ndcerpc\nAvailable for: macOS Ventura\nImpact: A remote user may be able to cause unexpected app termination\nor arbitrary code execution\nDescription: A memory initialization issue was addressed. \nCVE-2023-27934: Aleksandar Nikolic of Cisco Talos\n\ndcerpc\nAvailable for: macOS Ventura\nImpact: A user in a privileged network position may be able to cause\na denial-of-service\nDescription: A denial-of-service issue was addressed with improved\nmemory handling. \nCVE-2023-28180: Aleksandar Nikolic of Cisco Talos\n\ndcerpc\nAvailable for: macOS Ventura\nImpact: A remote user may be able to cause unexpected app termination\nor arbitrary code execution\nDescription: The issue was addressed with improved bounds checks. \nCVE-2023-27935: Aleksandar Nikolic of Cisco Talos\n\ndcerpc\nAvailable for: macOS Ventura\nImpact: A remote user may be able to cause unexpected system\ntermination or corrupt kernel memory\nDescription: The issue was addressed with improved memory handling. \nCVE-2023-27953: Aleksandar Nikolic of Cisco Talos\nCVE-2023-27958: Aleksandar Nikolic of Cisco Talos\n\nDisplay\nAvailable for: macOS Ventura\nImpact: An app may be able to execute arbitrary code with kernel\nprivileges\nDescription: A memory corruption issue was addressed with improved\nstate management. \nCVE-2023-27965: Proteas of Pangu Lab\n\nFaceTime\nAvailable for: macOS Ventura\nImpact: An app may be able to access user-sensitive data\nDescription: A privacy issue was addressed by moving sensitive data\nto a more secure location. \nCVE-2023-28190: Joshua Jones\n\nFind My\nAvailable for: macOS Ventura\nImpact: An app may be able to read sensitive location information\nDescription: A privacy issue was addressed with improved private data\nredaction for log entries. \nCVE-2023-23537: an anonymous researcher\n\nFontParser\nAvailable for: macOS Ventura\nImpact: Processing a maliciously crafted image may result in\ndisclosure of process memory\nDescription: The issue was addressed with improved memory handling. \nCVE-2023-27956: Ye Zhang of Baidu Security\n\nFoundation\nAvailable for: macOS Ventura\nImpact: Parsing a maliciously crafted plist may lead to an unexpected\napp termination or arbitrary code execution\nDescription: An integer overflow was addressed with improved input\nvalidation. \nCVE-2023-27937: an anonymous researcher\n\niCloud\nAvailable for: macOS Ventura\nImpact: A file from an iCloud shared-by-me folder may be able to\nbypass Gatekeeper\nDescription: This was addressed with additional checks by Gatekeeper\non files downloaded from an iCloud shared-by-me folder. \nCVE-2023-23526: Jubaer Alnazi of TRS Group of Companies\n\nIdentity Services\nAvailable for: macOS Ventura\nImpact: An app may be able to access information about a user\u2019s\ncontacts\nDescription: A privacy issue was addressed with improved private data\nredaction for log entries. \nCVE-2023-27928: Csaba Fitzl (@theevilbit) of Offensive Security\n\nImageIO\nAvailable for: macOS Ventura\nImpact: Processing a maliciously crafted image may result in\ndisclosure of process memory\nDescription: The issue was addressed with improved memory handling. \nCVE-2023-23535: ryuzaki\n\nImageIO\nAvailable for: macOS Ventura\nImpact: Processing a maliciously crafted image may result in\ndisclosure of process memory\nDescription: An out-of-bounds read was addressed with improved input\nvalidation. \nCVE-2023-27929: Meysam Firouzi (@R00tkitSMM) of Mbition Mercedes-Benz\nInnovation Lab and jzhu working with Trend Micro Zero Day Initiative\n\nImageIO\nAvailable for: macOS Ventura\nImpact: Processing a maliciously crafted file may lead to unexpected\napp termination or arbitrary code execution\nDescription: An out-of-bounds read was addressed with improved bounds\nchecking. \nCVE-2023-27946: Mickey Jin (@patch1t)\n\nImageIO\nAvailable for: macOS Ventura\nImpact: Processing a maliciously crafted file may lead to unexpected\napp termination or arbitrary code execution\nDescription: A buffer overflow issue was addressed with improved\nmemory handling. \nCVE-2023-23514: Xinru Chi of Pangu Lab, Ned Williamson of Google\nProject Zero\nCVE-2023-27969: Adam Doup\u00e9 of ASU SEFCOM\n\nKernel\nAvailable for: macOS Ventura\nImpact: An app with root privileges may be able to execute arbitrary\ncode with kernel privileges\nDescription: The issue was addressed with improved memory handling. \nCVE-2023-27933: sqrtpwn\n\nKernel\nAvailable for: macOS Ventura\nImpact: An app may be able to disclose kernel memory\nDescription: An out-of-bounds read issue existed that led to the\ndisclosure of kernel memory. \nCVE-2023-27941: Arsenii Kostromin (0x3c3e)\n\nKernel\nAvailable for: macOS Ventura\nImpact: An app may be able to disclose kernel memory\nDescription: A validation issue was addressed with improved input\nsanitization. \nCVE-2023-28200: Arsenii Kostromin (0x3c3e)\n\nLaunchServices\nAvailable for: macOS Ventura\nImpact: Files downloaded from the internet may not have the\nquarantine flag applied\nDescription: This issue was addressed with improved checks. \nCVE-2023-27943: an anonymous researcher, Brandon Dalton, Milan Tenk,\nand Arthur Valiev\n\nLaunchServices\nAvailable for: macOS Ventura\nImpact: An app may be able to gain root privileges\nDescription: This issue was addressed with improved checks. \nCVE-2023-23525: Mickey Jin (@patch1t)\n\nModel I/O\nAvailable for: macOS Ventura\nImpact: Processing a maliciously crafted file may lead to unexpected\napp termination or arbitrary code execution\nDescription: An out-of-bounds read was addressed with improved input\nvalidation. \nCVE-2023-27949: Mickey Jin (@patch1t)\n\nNetworkExtension\nAvailable for: macOS Ventura\nImpact: A user in a privileged network position may be able to spoof\na VPN server that is configured with EAP-only authentication on a\ndevice\nDescription: The issue was addressed with improved authentication. \nCVE-2023-28182: Zhuowei Zhang\n\nPackageKit\nAvailable for: macOS Ventura\nImpact: An app may be able to modify protected parts of the file\nsystem\nDescription: A logic issue was addressed with improved checks. \nCVE-2023-23538: Mickey Jin (@patch1t)\nCVE-2023-27962: Mickey Jin (@patch1t)\n\nPhotos\nAvailable for: macOS Ventura\nImpact: Photos belonging to the Hidden Photos Album could be viewed\nwithout authentication through Visual Lookup\nDescription: A logic issue was addressed with improved restrictions. \nCVE-2023-23523: developStorm\n\nPodcasts\nAvailable for: macOS Ventura\nImpact: An app may be able to access user-sensitive data\nDescription: The issue was addressed with improved checks. \nCVE-2023-27942: Mickey Jin (@patch1t)\n\nSafari\nAvailable for: macOS Ventura\nImpact: An app may bypass Gatekeeper checks\nDescription: A race condition was addressed with improved locking. \nCVE-2023-27952: Csaba Fitzl (@theevilbit) of Offensive Security\n\nSandbox\nAvailable for: macOS Ventura\nImpact: An app may be able to modify protected parts of the file\nsystem\nDescription: A logic issue was addressed with improved checks. \nCVE-2023-23533: Mickey Jin (@patch1t), Koh M. Nakagawa of FFRI\nSecurity, Inc., and Csaba Fitzl (@theevilbit) of Offensive Security\n\nSandbox\nAvailable for: macOS Ventura\nImpact: An app may be able to bypass Privacy preferences\nDescription: A logic issue was addressed with improved validation. \nCVE-2023-28178: Yi\u011fit Can YILMAZ (@yilmazcanyigit)\n\nShortcuts\nAvailable for: macOS Ventura\nImpact: A shortcut may be able to use sensitive data with certain\nactions without prompting the user\nDescription: The issue was addressed with additional permissions\nchecks. \nCVE-2023-27963: Jubaer Alnazi Jabin of TRS Group Of Companies, and\nWenchao Li and Xiaolong Bai of Alibaba Group\n\nSystem Settings\nAvailable for: macOS Ventura\nImpact: An app may be able to access user-sensitive data\nDescription: A privacy issue was addressed with improved private data\nredaction for log entries. \nCVE-2023-23542: an anonymous researcher\n\nSystem Settings\nAvailable for: macOS Ventura\nImpact: An app may be able to read sensitive location information\nDescription: A permissions issue was addressed with improved\nvalidation. \nCVE-2023-28192: Guilherme Rambo of Best Buddy Apps (rambo.codes)\n\nTCC\nAvailable for: macOS Ventura\nImpact: An app may be able to access user-sensitive data\nDescription: This issue was addressed by removing the vulnerable\ncode. \nCVE-2023-27931: Mickey Jin (@patch1t)\n\nVim\nAvailable for: macOS Ventura\nImpact: Multiple issues in Vim\nDescription: Multiple issues were addressed by updating to Vim\nversion 9.0.1191. \nCVE-2023-0049\nCVE-2023-0051\nCVE-2023-0054\nCVE-2023-0288\nCVE-2023-0433\nCVE-2023-0512\n\nWebKit\nAvailable for: macOS Ventura\nImpact: Processing maliciously crafted web content may bypass Same\nOrigin Policy\nDescription: This issue was addressed with improved state management. \nCVE-2023-27932: an anonymous researcher\n\nWebKit\nAvailable for: macOS Ventura\nImpact: A website may be able to track sensitive user information\nDescription: The issue was addressed by removing origin information. \nCVE-2023-27954: an anonymous researcher\n\nXPC\nAvailable for: macOS Ventura\nImpact: An app may be able to break out of its sandbox\nDescription: This issue was addressed with a new entitlement. \nCVE-2023-27944: Mickey Jin (@patch1t)\n\nAdditional recognition\n\nActivation Lock\nWe would like to acknowledge Christian Mina for their assistance. \n\nAppleScript\nWe would like to acknowledge Mickey Jin (@patch1t) for their\nassistance. \n\nCFNetwork\nWe would like to acknowledge an anonymous researcher for their\nassistance. \n\nControl Center\nWe would like to acknowledge an anonymous researcher for their\nassistance. \n\nCoreServices\nWe would like to acknowledge Mickey Jin (@patch1t) for their\nassistance. \n\ndcerpc\nWe would like to acknowledge Aleksandar Nikolic of Cisco Talos for\ntheir assistance. \n\nFaceTime\nWe would like to acknowledge Sajan Karki for their assistance. \n\nfile_cmds\nWe would like to acknowledge Lukas Zronek for their assistance. \n\nGit\nWe would like to acknowledge for their assistance. \n\nHeimdal\nWe would like to acknowledge Evgeny Legerov of Intevydis for their\nassistance. \n\nImageIO\nWe would like to acknowledge Meysam Firouzi @R00tkitSMM for their\nassistance. \n\nMail\nWe would like to acknowledge Chen Zhang, Fabian Ising of FH M\u00fcnster\nUniversity of Applied Sciences, Damian Poddebniak of FH M\u00fcnster\nUniversity of Applied Sciences, Tobias Kappert of M\u00fcnster University\nof Applied Sciences, Christoph Saatjohann of M\u00fcnster University of\nApplied Sciences, Sebast, and Merlin Chlosta of CISPA Helmholtz\nCenter for Information Security for their assistance. \n\nNSOpenPanel\nWe would like to acknowledge Alexandre Colucci (@timacfr) for their\nassistance. \n\nquarantine\nWe would like to acknowledge Koh M. Nakagawa of FFRI Security, Inc. \nfor their assistance. \n\nSafari Downloads\nWe would like to acknowledge Andrew Gonzalez for their assistance. \n\nWebKit\nWe would like to acknowledge an anonymous researcher for their\nassistance. \n\nWebKit Web Inspector\nWe would like to acknowledge Dohyun Lee (@l33d0hyun) and crixer\n(@pwning_me) of SSD Labs for their assistance. \n\nWi-Fi\nWe would like to acknowledge an anonymous researcher for their\nassistance. \n\nmacOS Ventura 13.3 may be obtained from the Mac App Store or Apple\u0027s\nSoftware Downloads web site: https://support.apple.com/downloads/\nAll information is also posted on the Apple Security Updates\nweb site: https://support.apple.com/en-us/HT201222. \n\nThis message is signed with Apple\u0027s Product Security PGP key,\nand details are available at:\nhttps://www.apple.com/support/security/pgp/\n-----BEGIN PGP SIGNATURE-----\n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\nm1X8VhzBgXwKUzjkz7lBLl9R9pebBLU90KXLOJsF8j3bOUS6ddU=\n=7+Lt\n-----END PGP SIGNATURE-----\n\n\n. Apple is aware of a report that this issue\nmay have been actively exploited. Make sure you have an\nInternet connection and have installed the latest version of iTunes\nfrom https://www.apple.com/itunes/ iTunes and Software Update on the\ndevice will automatically check Apple\u0027s update server on its weekly\nschedule. When an update is detected, it is downloaded and the option\nto be installed is presented to the user when the iOS device is\ndocked. We recommend applying the update immediately if possible. \nSelecting Don\u0027t Install will present the option the next time you\nconnect your iOS device. The automatic update process may take up to\na week depending on the day that iTunes or the device checks for\nupdates. You may manually obtain the update via the Check for Updates\nbutton within iTunes, or the Software Update on your device. To\ncheck that the iPhone, iPod touch, or iPad has been updated: *\nNavigate to Settings * Select General * Select About. The version\nafter applying this update will be \"iOS 16.3.1 and iPadOS 16.3.1\"", "sources": [ { "db": "NVD", "id": "CVE-2023-23514" }, { "db": "JVNDB", "id": "JVNDB-2023-004746" }, { "db": "VULHUB", "id": "VHN-451825" }, { "db": "VULMON", "id": "CVE-2023-23514" }, { "db": "PACKETSTORM", "id": "171550" }, { "db": "PACKETSTORM", "id": "171544" }, { "db": "PACKETSTORM", "id": "171541" }, { "db": "PACKETSTORM", "id": "170996" }, { "db": "PACKETSTORM", "id": "170990" } ], "trust": 2.25 }, "external_ids": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "db": "NVD", "id": "CVE-2023-23514", "trust": 4.0 }, { "db": "JVNDB", "id": "JVNDB-2023-004746", "trust": 0.8 }, { "db": "PACKETSTORM", "id": "171359", "trust": 0.7 }, { "db": "AUSCERT", "id": "ESB-2023.1836", "trust": 0.6 }, { "db": "CNNVD", "id": "CNNVD-202302-1001", "trust": 0.6 }, { "db": "VULHUB", "id": "VHN-451825", "trust": 0.1 }, { "db": "VULMON", "id": "CVE-2023-23514", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "171550", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "171544", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "171541", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "170996", "trust": 0.1 }, { "db": "PACKETSTORM", "id": "170990", "trust": 0.1 } ], "sources": [ { "db": "VULHUB", "id": "VHN-451825" }, { "db": "VULMON", "id": "CVE-2023-23514" }, { "db": "JVNDB", "id": "JVNDB-2023-004746" }, { "db": "PACKETSTORM", "id": "171550" }, { "db": "PACKETSTORM", "id": "171544" }, { "db": "PACKETSTORM", "id": "171541" }, { "db": "PACKETSTORM", "id": "170996" }, { "db": "PACKETSTORM", "id": "170990" }, { "db": "PACKETSTORM", "id": "171359" }, { "db": "NVD", "id": "CVE-2023-23514" }, { "db": "CNNVD", "id": "CNNVD-202302-1001" } ] }, "id": "VAR-202302-1169", "iot": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": true, "sources": [ { "db": "VULHUB", "id": "VHN-451825" } ], "trust": 0.01 }, "last_update_date": "2023-12-18T11:52:26.989000Z", "patch": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "title": "HT213675 Apple\u00a0 Security update", "trust": 0.8, "url": "https://support.apple.com/en-us/ht213633" }, { "title": "Apple iOS and iPadOS Remediation of resource management error vulnerabilities", "trust": 0.6, "url": "http://123.124.177.30/web/xxk/bdxqbyid.tag?id=228160" }, { "title": "Apple: iOS 16.3.1 and iPadOS 16.3.1", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=438cfee06b6a64493b519711eb37344f" }, { "title": "Apple: macOS Ventura 13.2.1", "trust": 0.1, "url": "https://vulmon.com/vendoradvisory?qidtp=apple_security_advisories\u0026qid=4ef147b74f6732097f493be9b69df642" }, { "title": null, "trust": 0.1, "url": "https://www.theregister.co.uk/2023/02/15/apple_patches_zeroday_vulnerability/" } ], "sources": [ { "db": "VULMON", "id": "CVE-2023-23514" }, { "db": "JVNDB", "id": "JVNDB-2023-004746" }, { "db": "CNNVD", "id": "CNNVD-202302-1001" } ] }, "problemtype_data": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "problemtype": "CWE-416", "trust": 1.1 }, { "problemtype": "Use of freed memory (CWE-416) [NVD evaluation ]", "trust": 0.8 } ], "sources": [ { "db": "VULHUB", "id": "VHN-451825" }, { "db": "JVNDB", "id": "JVNDB-2023-004746" }, { "db": "NVD", "id": "CVE-2023-23514" } ] }, "references": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "trust": 2.3, "url": "https://support.apple.com/en-us/ht213635" }, { "trust": 1.7, "url": "https://support.apple.com/en-us/ht213633" }, { "trust": 1.6, "url": "https://support.apple.com/en-us/ht213677" }, { "trust": 1.4, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-23514" }, { "trust": 1.0, "url": "https://support.apple.com/en-us/ht213670" }, { "trust": 1.0, "url": "https://support.apple.com/en-us/ht213675" }, { "trust": 0.6, "url": "https://packetstormsecurity.com/files/171359/xnu-nfssvc-root-check-bypass-use-after-free.html" }, { "trust": 0.6, "url": "http://seclists.org/fulldisclosure/2023/mar/18" }, { "trust": 0.6, "url": "http://seclists.org/fulldisclosure/2023/mar/17" }, { "trust": 0.6, "url": "https://support.apple.com/kb/ht213670" }, { "trust": 0.6, "url": "https://support.apple.com/kb/ht213677" }, { "trust": 0.6, "url": "https://support.apple.com/kb/ht213675" }, { "trust": 0.6, "url": "http://seclists.org/fulldisclosure/2023/mar/21" }, { "trust": 0.6, "url": "https://www.auscert.org.au/bulletins/esb-2023.1836" }, { "trust": 0.6, "url": "https://cxsecurity.com/cveshow/cve-2023-23514/" }, { "trust": 0.5, "url": "https://www.apple.com/support/security/pgp/" }, { "trust": 0.5, "url": "https://support.apple.com/en-us/ht201222." }, { "trust": 0.4, "url": "https://support.apple.com/downloads/" }, { "trust": 0.3, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-0512" }, { "trust": 0.3, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-23527" }, { "trust": 0.3, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-0433" }, { "trust": 0.2, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-27937" }, { "trust": 0.2, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-27935" }, { "trust": 0.2, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-27936" }, { "trust": 0.2, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-23542" }, { "trust": 0.2, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-23540" }, { "trust": 0.2, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-23529" }, { "trust": 0.1, "url": "https://www.theregister.co.uk/2023/02/15/apple_patches_zeroday_vulnerability/" }, { "trust": 0.1, "url": "https://support.apple.com/kb/ht213635" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-27928" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-23537" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-23535" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2022-26702" }, { "trust": 0.1, "url": "https://support.apple.com/ht213675." }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-23534" }, { "trust": 0.1, "url": "https://support.apple.com/ht213677." }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-27942" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-23538" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-23533" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-27944" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-27933" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-0051" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2022-43552" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-0054" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-23523" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-23525" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-0049" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2022-43551" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-0288" }, { "trust": 0.1, "url": "https://support.apple.com/ht213670." }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-23532" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-23526" }, { "trust": 0.1, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-23522" }, { "trust": 0.1, "url": "https://support.apple.com/ht213633." }, { "trust": 0.1, "url": "https://www.apple.com/itunes/" }, { "trust": 0.1, "url": "https://support.apple.com/ht213635." } ], "sources": [ { "db": "VULHUB", "id": "VHN-451825" }, { "db": "VULMON", "id": "CVE-2023-23514" }, { "db": "JVNDB", "id": "JVNDB-2023-004746" }, { "db": "PACKETSTORM", "id": "171550" }, { "db": "PACKETSTORM", "id": "171544" }, { "db": "PACKETSTORM", "id": "171541" }, { "db": "PACKETSTORM", "id": "170996" }, { "db": "PACKETSTORM", "id": "170990" }, { "db": "PACKETSTORM", "id": "171359" }, { "db": "NVD", "id": "CVE-2023-23514" }, { "db": "CNNVD", "id": "CNNVD-202302-1001" } ] }, "sources": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", "data": { "@container": "@list" } }, "data": [ { "db": "VULHUB", "id": "VHN-451825" }, { "db": "VULMON", "id": "CVE-2023-23514" }, { "db": "JVNDB", "id": "JVNDB-2023-004746" }, { "db": "PACKETSTORM", "id": "171550" }, { "db": "PACKETSTORM", "id": "171544" }, { "db": "PACKETSTORM", "id": "171541" }, { "db": "PACKETSTORM", "id": "170996" }, { "db": "PACKETSTORM", "id": "170990" }, { "db": "PACKETSTORM", "id": "171359" }, { "db": "NVD", "id": "CVE-2023-23514" }, { "db": "CNNVD", "id": "CNNVD-202302-1001" } ] }, "sources_release_date": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", "data": { "@container": "@list" } }, "data": [ { "date": "2023-02-27T00:00:00", "db": "VULHUB", "id": "VHN-451825" }, { "date": "2023-11-01T00:00:00", "db": "JVNDB", "id": "JVNDB-2023-004746" }, { "date": "2023-03-28T14:57:46", "db": "PACKETSTORM", "id": "171550" }, { "date": "2023-03-28T14:41:46", "db": "PACKETSTORM", "id": "171544" }, { "date": "2023-03-28T14:39:03", "db": "PACKETSTORM", "id": "171541" }, { "date": "2023-02-15T17:38:42", "db": "PACKETSTORM", "id": "170996" }, { "date": "2023-02-15T17:34:19", "db": "PACKETSTORM", "id": "170990" }, { "date": "2023-03-16T14:42:15", "db": "PACKETSTORM", "id": "171359" }, { "date": "2023-02-27T20:15:14.263000", "db": "NVD", "id": "CVE-2023-23514" }, { "date": "2023-02-13T00:00:00", "db": "CNNVD", "id": "CNNVD-202302-1001" } ] }, "sources_update_date": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", "data": { "@container": "@list" } }, "data": [ { "date": "2023-03-08T00:00:00", "db": "VULHUB", "id": "VHN-451825" }, { "date": "2023-11-01T06:35:00", "db": "JVNDB", "id": "JVNDB-2023-004746" }, { "date": "2023-07-27T04:15:14.157000", "db": "NVD", "id": "CVE-2023-23514" }, { "date": "2023-03-29T00:00:00", "db": "CNNVD", "id": "CNNVD-202302-1001" } ] }, "threat_type": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "local", "sources": [ { "db": "CNNVD", "id": "CNNVD-202302-1001" } ], "trust": 0.6 }, "title": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Freed memory usage vulnerability in multiple Apple products", "sources": [ { "db": "JVNDB", "id": "JVNDB-2023-004746" } ], "trust": 0.8 }, "type": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "resource management error", "sources": [ { "db": "CNNVD", "id": "CNNVD-202302-1001" } ], "trust": 0.6 } }
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.