CVE-2023-41993
Known Exploited Vulnerability
The issue was addressed with improved checks. This issue is fixed in iOS 16.7 and iPadOS 16.7, iOS 17.0.1 and iPadOS 17.0.1, Safari 16.6.1. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.7.
| Max Base Score | 9.8 |
| Published | 2023-09-21 |
| Updated | 2023-09-25 |
| EPSS | 0.15% |
| KEV Added | 2023-09-25 |
CVE-2023-41992
Known Exploited Vulnerability
The issue was addressed with improved checks. This issue is fixed in iOS 16.7 and iPadOS 16.7, OS 17.0.1 and iPadOS 17.0.1, watchOS 9.6.3, macOS Ventura 13.6, macOS Monterey 12.7, watchOS 10.0.1. A local attacker may be able to elevate their privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.7.
| Max Base Score | 7.8 |
| Published | 2023-09-21 |
| Updated | 2023-09-25 |
| EPSS | 0.12% |
| KEV Added | 2023-09-25 |
CVE-2023-41991
Known Exploited Vulnerability
A certificate validation issue was addressed. This issue is fixed in iOS 16.7 and iPadOS 16.7, OS 17.0.1 and iPadOS 17.0.1, watchOS 9.6.3, macOS Ventura 13.6, watchOS 10.0.1. A malicious app may be able to bypass signature validation. Apple is aware of a report that this issue may have been actively exploited against versions of iOS before iOS 16.7.
| Max Base Score | 5.5 |
| Published | 2023-09-21 |
| Updated | 2023-09-25 |
| EPSS | 0.45% |
| KEV Added | 2023-09-25 |
The issue was addressed with improved handling of caches. This issue is fixed in tvOS 16.3, iOS 16.3 and iPadOS 16.3, macOS Monterey 12.6.8, macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Ventura 13.2, watchOS 9.3. Processing a font file may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7.1.
| Max Base Score | 7.8 |
| Published | 2023-09-12 |
| Updated | 2023-09-21 |
| EPSS | 0.05% |
CVE-2023-41064
Known Exploited Vulnerability
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 16.6.1 and iPadOS 16.6.1, macOS Monterey 12.6.9, macOS Ventura 13.5.2, iOS 15.7.9 and iPadOS 15.7.9, macOS Big Sur 11.7.10. Processing a maliciously crafted image may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
| Max Base Score | 7.8 |
| Published | 2023-09-07 |
| Updated | 2023-09-22 |
| EPSS | 0.33% |
| KEV Added | 2023-09-11 |
CVE-2023-41061
Known Exploited Vulnerability
A validation issue was addressed with improved logic. This issue is fixed in watchOS 9.6.2, iOS 16.6.1 and iPadOS 16.6.1. A maliciously crafted attachment may result in arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
| Max Base Score | 7.8 |
| Published | 2023-09-07 |
| Updated | 2023-09-12 |
| EPSS | 0.07% |
| KEV Added | 2023-09-11 |
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Monterey 12.6.8. An app may be able to read sensitive location information.
| Max Base Score | 3.3 |
| Published | 2023-09-12 |
| Updated | 2023-09-21 |
| EPSS | 0.05% |
The issue was addressed with improved memory handling. This issue is fixed in iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may lead to arbitrary code execution.
| Max Base Score | 8.8 |
| Published | 2023-07-27 |
| Updated | 2023-08-18 |
| EPSS | 0.13% |
CVE-2023-38606
Known Exploited Vulnerability
This issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.6.8, iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to modify sensitive kernel state. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7.1.
| Max Base Score | 5.5 |
| Published | 2023-07-27 |
| Updated | 2023-08-01 |
| EPSS | 0.24% |
| KEV Added | 2023-07-26 |
This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.5. An app may be able to determine a user’s current location.
| Max Base Score | 3.3 |
| Published | 2023-09-06 |
| Updated | 2023-09-12 |
| EPSS | 0.05% |
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in watchOS 9.6, macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Monterey 12.6.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. An app may be able to execute arbitrary code with kernel privileges.
| Max Base Score | 9.8 |
| Published | 2023-07-28 |
| Updated | 2023-08-03 |
| EPSS | 0.18% |
The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. A remote user may be able to cause a denial-of-service.
| Max Base Score | 7.5 |
| Published | 2023-07-27 |
| Updated | 2023-08-02 |
| EPSS | 0.10% |
The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may lead to arbitrary code execution.
| Max Base Score | 8.8 |
| Published | 2023-07-27 |
| Updated | 2023-08-18 |
| EPSS | 0.13% |
A logic issue was addressed with improved state management. This issue is fixed in Safari 16.6, watchOS 9.6, iOS 15.7.8 and iPadOS 15.7.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. A website may be able to track sensitive user information.
| Max Base Score | 6.5 |
| Published | 2023-07-28 |
| Updated | 2023-08-18 |
| EPSS | 0.10% |
A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 9.6, macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Monterey 12.6.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. An app may be able to execute arbitrary code with kernel privileges.
| Max Base Score | 9.8 |
| Published | 2023-07-28 |
| Updated | 2023-08-03 |
| EPSS | 0.28% |
The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5, Safari 16.6. Processing web content may lead to arbitrary code execution.
| Max Base Score | 8.8 |
| Published | 2023-07-27 |
| Updated | 2023-08-18 |
| EPSS | 0.10% |
The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may lead to arbitrary code execution.
| Max Base Score | 8.8 |
| Published | 2023-07-27 |
| Updated | 2023-08-18 |
| EPSS | 0.13% |
The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may lead to arbitrary code execution.
| Max Base Score | 8.8 |
| Published | 2023-07-27 |
| Updated | 2023-08-18 |
| EPSS | 0.12% |
A logic issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.8, iOS 16.6 and iPadOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to cause a denial-of-service.
| Max Base Score | 5.5 |
| Published | 2023-07-27 |
| Updated | 2023-08-02 |
| EPSS | 0.05% |
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16.6 and iPadOS 16.6, watchOS 9.6, tvOS 16.6, macOS Ventura 13.5. Processing web content may lead to arbitrary code execution.
| Max Base Score | 8.8 |
| Published | 2023-07-28 |
| Updated | 2023-08-18 |
| EPSS | 0.16% |
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in watchOS 9.6, macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Monterey 12.6.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. A remote user may be able to cause unexpected system termination or corrupt kernel memory.
| Max Base Score | 8.8 |
| Published | 2023-07-28 |
| Updated | 2023-08-03 |
| EPSS | 0.30% |
The issue was addressed with improved memory handling. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5, watchOS 9.6. An app may be able to execute arbitrary code with kernel privileges.
| Max Base Score | 7.8 |
| Published | 2023-07-27 |
| Updated | 2023-08-03 |
| EPSS | 0.05% |
The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. A website may be able to bypass Same Origin Policy.
| Max Base Score | 7.5 |
| Published | 2023-07-27 |
| Updated | 2023-08-18 |
| EPSS | 0.09% |
A path handling issue was addressed with improved validation. This issue is fixed in macOS Monterey 12.6.8, iOS 16.6 and iPadOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to gain root privileges.
| Max Base Score | 7.8 |
| Published | 2023-07-27 |
| Updated | 2023-08-03 |
| EPSS | 0.06% |
The issue was addressed with improved memory handling. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. An app may be able to execute arbitrary code with kernel privileges.
| Max Base Score | 7.2 |
| Published | 2023-07-27 |
| Updated | 2023-08-03 |
| EPSS | 0.08% |
3101 vulnerabilities found
1
2
3
4
5
6 ......
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125