From 079f1a5ecacaddefa98039d0dfc2793be8fe20eb Mon Sep 17 00:00:00 2001 From: CVE Team Date: Thu, 27 Jul 2023 04:00:49 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2023/28xxx/CVE-2023-28182.json | 4 ++-- 2023/28xxx/CVE-2023-28189.json | 4 ++-- 2023/28xxx/CVE-2023-28190.json | 4 ++-- 2023/28xxx/CVE-2023-28191.json | 4 ++-- 2023/28xxx/CVE-2023-28192.json | 4 ++-- 2023/28xxx/CVE-2023-28194.json | 4 ++-- 2023/28xxx/CVE-2023-28200.json | 4 ++-- 2023/28xxx/CVE-2023-28201.json | 2 +- 2023/28xxx/CVE-2023-28202.json | 4 ++-- 2023/28xxx/CVE-2023-28204.json | 4 ++-- 2023/28xxx/CVE-2023-28205.json | 2 +- 2023/28xxx/CVE-2023-28206.json | 4 ++-- 2023/32xxx/CVE-2023-32352.json | 4 ++-- 2023/32xxx/CVE-2023-32353.json | 4 ++-- 2023/32xxx/CVE-2023-32354.json | 2 +- 2023/32xxx/CVE-2023-32355.json | 4 ++-- 2023/32xxx/CVE-2023-32357.json | 4 ++-- 2023/32xxx/CVE-2023-32360.json | 4 ++-- 2023/32xxx/CVE-2023-32363.json | 4 ++-- 2023/32xxx/CVE-2023-32364.json | 4 ++-- 2023/32xxx/CVE-2023-32365.json | 4 ++-- 2023/32xxx/CVE-2023-32367.json | 4 ++-- 2023/32xxx/CVE-2023-32368.json | 4 ++-- 2023/32xxx/CVE-2023-32369.json | 4 ++-- 2023/32xxx/CVE-2023-32371.json | 4 ++-- 2023/32xxx/CVE-2023-32372.json | 4 ++-- 2023/32xxx/CVE-2023-32373.json | 4 ++-- 2023/32xxx/CVE-2023-32375.json | 4 ++-- 2023/32xxx/CVE-2023-32376.json | 4 ++-- 2023/32xxx/CVE-2023-32380.json | 4 ++-- 2023/32xxx/CVE-2023-32381.json | 4 ++-- 2023/32xxx/CVE-2023-32382.json | 4 ++-- 2023/32xxx/CVE-2023-32384.json | 4 ++-- 2023/32xxx/CVE-2023-32385.json | 4 ++-- 2023/32xxx/CVE-2023-32386.json | 4 ++-- 2023/32xxx/CVE-2023-32387.json | 2 +- 2023/32xxx/CVE-2023-32388.json | 4 ++-- 2023/32xxx/CVE-2023-32389.json | 2 +- 2023/32xxx/CVE-2023-32390.json | 4 ++-- 2023/32xxx/CVE-2023-32391.json | 4 ++-- 2023/32xxx/CVE-2023-32392.json | 4 ++-- 2023/32xxx/CVE-2023-32393.json | 4 ++-- 2023/32xxx/CVE-2023-32394.json | 4 ++-- 2023/32xxx/CVE-2023-32395.json | 4 ++-- 2023/32xxx/CVE-2023-32397.json | 4 ++-- 2023/32xxx/CVE-2023-32398.json | 4 ++-- 2023/32xxx/CVE-2023-32399.json | 4 ++-- 2023/32xxx/CVE-2023-32402.json | 4 ++-- 2023/32xxx/CVE-2023-32403.json | 4 ++-- 2023/32xxx/CVE-2023-32404.json | 4 ++-- 2023/32xxx/CVE-2023-32405.json | 4 ++-- 2023/32xxx/CVE-2023-32407.json | 4 ++-- 2023/32xxx/CVE-2023-32408.json | 4 ++-- 2023/32xxx/CVE-2023-32409.json | 4 ++-- 2023/32xxx/CVE-2023-32410.json | 4 ++-- 2023/32xxx/CVE-2023-32411.json | 4 ++-- 2023/32xxx/CVE-2023-32412.json | 4 ++-- 2023/32xxx/CVE-2023-32413.json | 4 ++-- 2023/32xxx/CVE-2023-32414.json | 4 ++-- 2023/32xxx/CVE-2023-32415.json | 4 ++-- 2023/32xxx/CVE-2023-32416.json | 2 +- 2023/32xxx/CVE-2023-32417.json | 4 ++-- 2023/32xxx/CVE-2023-32418.json | 4 ++-- 2023/32xxx/CVE-2023-32419.json | 4 ++-- 2023/32xxx/CVE-2023-32420.json | 2 +- 2023/32xxx/CVE-2023-32422.json | 4 ++-- 2023/32xxx/CVE-2023-32423.json | 4 ++-- 2023/32xxx/CVE-2023-32429.json | 4 ++-- 2023/32xxx/CVE-2023-32433.json | 4 ++-- 2023/32xxx/CVE-2023-32434.json | 2 +- 2023/32xxx/CVE-2023-32435.json | 4 ++-- 2023/32xxx/CVE-2023-32437.json | 4 ++-- 2023/32xxx/CVE-2023-32439.json | 2 +- 2023/32xxx/CVE-2023-32441.json | 2 +- 2023/32xxx/CVE-2023-32442.json | 4 ++-- 2023/32xxx/CVE-2023-32443.json | 2 +- 2023/32xxx/CVE-2023-32734.json | 2 +- 2023/35xxx/CVE-2023-35993.json | 2 +- 2023/36xxx/CVE-2023-36854.json | 4 ++-- 2023/36xxx/CVE-2023-36862.json | 4 ++-- 2023/37xxx/CVE-2023-37450.json | 4 ++-- 2023/38xxx/CVE-2023-38133.json | 2 +- 2023/38xxx/CVE-2023-38136.json | 4 ++-- 2023/38xxx/CVE-2023-38258.json | 4 ++-- 2023/38xxx/CVE-2023-38259.json | 4 ++-- 2023/38xxx/CVE-2023-38410.json | 4 ++-- 2023/38xxx/CVE-2023-38421.json | 4 ++-- 2023/38xxx/CVE-2023-38424.json | 4 ++-- 2023/38xxx/CVE-2023-38425.json | 4 ++-- 2023/38xxx/CVE-2023-38565.json | 4 ++-- 2023/38xxx/CVE-2023-38572.json | 2 +- 2023/38xxx/CVE-2023-38593.json | 4 ++-- 2023/38xxx/CVE-2023-38594.json | 4 ++-- 2023/38xxx/CVE-2023-38595.json | 4 ++-- 94 files changed, 173 insertions(+), 173 deletions(-) diff --git a/2023/28xxx/CVE-2023-28182.json b/2023/28xxx/CVE-2023-28182.json index eb63fc76930..492abf37b4f 100644 --- a/2023/28xxx/CVE-2023-28182.json +++ b/2023/28xxx/CVE-2023-28182.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, macOS Big Sur 11.7.5, macOS Monterey 12.6.4. A remote user may be able to cause unexpected app termination or arbitrary code execution." + "value": "The issue was addressed with improved authentication. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. A user in a privileged network position may be able to spoof a VPN server that is configured with EAP-only authentication on a device." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "A remote user may be able to cause unexpected app termination or arbitrary code execution" + "value": "A user in a privileged network position may be able to spoof a VPN server that is configured with EAP-only authentication on a device" } ] } diff --git a/2023/28xxx/CVE-2023-28189.json b/2023/28xxx/CVE-2023-28189.json index 86bd2c2b4df..2f8a113c182 100644 --- a/2023/28xxx/CVE-2023-28189.json +++ b/2023/28xxx/CVE-2023-28189.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with a new entitlement. This issue is fixed in macOS Big Sur 11.7.5, macOS Monterey 12.6.4, macOS Ventura 13.3. An app may be able to break out of its sandbox." + "value": "The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to view sensitive information." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to break out of its sandbox" + "value": "An app may be able to view sensitive information" } ] } diff --git a/2023/28xxx/CVE-2023-28190.json b/2023/28xxx/CVE-2023-28190.json index f95cf24ccec..f4b728912b5 100644 --- a/2023/28xxx/CVE-2023-28190.json +++ b/2023/28xxx/CVE-2023-28190.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with a new entitlement. This issue is fixed in macOS Ventura 13.3. An app may be able to break out of its sandbox." + "value": "A privacy issue was addressed by moving sensitive data to a more secure location. This issue is fixed in macOS Ventura 13.3. An app may be able to access user-sensitive data." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to break out of its sandbox" + "value": "An app may be able to access user-sensitive data" } ] } diff --git a/2023/28xxx/CVE-2023-28191.json b/2023/28xxx/CVE-2023-28191.json index 186a8155804..4f0cde0fed7 100644 --- a/2023/28xxx/CVE-2023-28191.json +++ b/2023/28xxx/CVE-2023-28191.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.4, macOS Monterey 12.6.6, tvOS 16.5, watchOS 9.5, iOS 16.5 and iPadOS 16.5, macOS Big Sur 11.7.7. An app may be able to disclose kernel memory." + "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to bypass Privacy preferences." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to bypass Privacy preferences" } ] } diff --git a/2023/28xxx/CVE-2023-28192.json b/2023/28xxx/CVE-2023-28192.json index d2a3597d992..0325ebafd6f 100644 --- a/2023/28xxx/CVE-2023-28192.json +++ b/2023/28xxx/CVE-2023-28192.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with a new entitlement. This issue is fixed in macOS Big Sur 11.7.5, macOS Monterey 12.6.4, macOS Ventura 13.3. An app may be able to break out of its sandbox." + "value": "A permissions issue was addressed with improved validation. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to read sensitive location information." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to break out of its sandbox" + "value": "An app may be able to read sensitive location information" } ] } diff --git a/2023/28xxx/CVE-2023-28194.json b/2023/28xxx/CVE-2023-28194.json index 0a53692207e..f18b8733405 100644 --- a/2023/28xxx/CVE-2023-28194.json +++ b/2023/28xxx/CVE-2023-28194.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved state management. This issue is fixed in iOS 16.4 and iPadOS 16.4. A remote attacker may be able to cause unexpected app termination or arbitrary code execution." + "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.4 and iPadOS 16.4. An app may be able to unexpectedly create a bookmark on the Home Screen." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "A remote attacker may be able to cause unexpected app termination or arbitrary code execution" + "value": "An app may be able to unexpectedly create a bookmark on the Home Screen" } ] } diff --git a/2023/28xxx/CVE-2023-28200.json b/2023/28xxx/CVE-2023-28200.json index 2110db57916..e286f680a41 100644 --- a/2023/28xxx/CVE-2023-28200.json +++ b/2023/28xxx/CVE-2023-28200.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved state management. This issue is fixed in iOS 15.7.4 and iPadOS 15.7.4, macOS Big Sur 11.7.5, macOS Monterey 12.6.4, macOS Ventura 13.3. A remote user may be able to cause unexpected app termination or arbitrary code execution." + "value": "A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Ventura 13.3, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to disclose kernel memory." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "A remote user may be able to cause unexpected app termination or arbitrary code execution" + "value": "An app may be able to disclose kernel memory" } ] } diff --git a/2023/28xxx/CVE-2023-28201.json b/2023/28xxx/CVE-2023-28201.json index 7cb2cbc0744..7f4931ebb18 100644 --- a/2023/28xxx/CVE-2023-28201.json +++ b/2023/28xxx/CVE-2023-28201.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.3, tvOS 16.4, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, Safari 16.4. A remote user may be able to cause unexpected app termination or arbitrary code execution." + "value": "This issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.3, Safari 16.4, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, tvOS 16.4. A remote user may be able to cause unexpected app termination or arbitrary code execution." } ] }, diff --git a/2023/28xxx/CVE-2023-28202.json b/2023/28xxx/CVE-2023-28202.json index 4189b4922d3..4a33dce07e1 100644 --- a/2023/28xxx/CVE-2023-28202.json +++ b/2023/28xxx/CVE-2023-28202.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4, watchOS 9.5, tvOS 16.5. An app may be able to disclose kernel memory." + "value": "This issue was addressed with improved state management. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. An app firewall setting may not take effect after exiting the Settings app." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app firewall setting may not take effect after exiting the Settings app" } ] } diff --git a/2023/28xxx/CVE-2023-28204.json b/2023/28xxx/CVE-2023-28204.json index b403d0d862c..b87e9fe85a8 100644 --- a/2023/28xxx/CVE-2023-28204.json +++ b/2023/28xxx/CVE-2023-28204.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, macOS Ventura 13.4, tvOS 16.5, watchOS 9.5, iOS 16.5 and iPadOS 16.5, Safari 16.5. An app may be able to disclose kernel memory." + "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, Safari 16.5, iOS 16.5 and iPadOS 16.5. Processing web content may disclose sensitive information. Apple is aware of a report that this issue may have been actively exploited." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "Processing web content may disclose sensitive information. Apple is aware of a report that this issue may have been actively exploited." } ] } diff --git a/2023/28xxx/CVE-2023-28205.json b/2023/28xxx/CVE-2023-28205.json index baf87a2644f..7e962103801 100644 --- a/2023/28xxx/CVE-2023-28205.json +++ b/2023/28xxx/CVE-2023-28205.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 16.4.1 and iPadOS 16.4.1, Safari 16.4.1, macOS Ventura 13.3.1, iOS 15.7.5 and iPadOS 15.7.5. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited." + "value": "A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited." } ] }, diff --git a/2023/28xxx/CVE-2023-28206.json b/2023/28xxx/CVE-2023-28206.json index 8c16dc55d5f..645b9daef6b 100644 --- a/2023/28xxx/CVE-2023-28206.json +++ b/2023/28xxx/CVE-2023-28206.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A use after free issue was addressed with improved memory management. This issue is fixed in iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1, macOS Monterey 12.6.5, macOS Big Sur 11.7.6, iOS 15.7.5 and iPadOS 15.7.5. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited." + "value": "An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1, iOS 15.7.5 and iPadOS 15.7.5, macOS Big Sur 11.7.6. An app may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited." + "value": "An app may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited." } ] } diff --git a/2023/32xxx/CVE-2023-32352.json b/2023/32xxx/CVE-2023-32352.json index 80b0ce77807..db45fd844bb 100644 --- a/2023/32xxx/CVE-2023-32352.json +++ b/2023/32xxx/CVE-2023-32352.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.4, macOS Monterey 12.6.6, watchOS 9.5, iOS 16.5 and iPadOS 16.5, macOS Big Sur 11.7.7. An app may be able to disclose kernel memory." + "value": "A logic issue was addressed with improved checks. This issue is fixed in watchOS 9.5, macOS Ventura 13.4, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may bypass Gatekeeper checks." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may bypass Gatekeeper checks" } ] } diff --git a/2023/32xxx/CVE-2023-32353.json b/2023/32xxx/CVE-2023-32353.json index 1b9f5caa81e..d564266198d 100644 --- a/2023/32xxx/CVE-2023-32353.json +++ b/2023/32xxx/CVE-2023-32353.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A logic issue was addressed with improved checks. This issue is fixed in iTunes 12.12.9 for Windows. An app may be able to gain elevated privileges." + "value": "A logic issue was addressed with improved checks. This issue is fixed in iTunes 12.12.9 for Windows. An app may be able to elevate privileges." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to gain elevated privileges" + "value": "An app may be able to elevate privileges" } ] } diff --git a/2023/32xxx/CVE-2023-32354.json b/2023/32xxx/CVE-2023-32354.json index 90449ebbaeb..15aee76873e 100644 --- a/2023/32xxx/CVE-2023-32354.json +++ b/2023/32xxx/CVE-2023-32354.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5. An app may be able to disclose kernel memory." + "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 9.5, tvOS 16.5, iOS 16.5 and iPadOS 16.5. An app may be able to disclose kernel memory." } ] }, diff --git a/2023/32xxx/CVE-2023-32355.json b/2023/32xxx/CVE-2023-32355.json index 212abe74d87..749efc60bd3 100644 --- a/2023/32xxx/CVE-2023-32355.json +++ b/2023/32xxx/CVE-2023-32355.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.7.7, macOS Ventura 13.4, macOS Monterey 12.6.6. A remote attacker may be able to cause unexpected app termination or arbitrary code execution." + "value": "A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An app may be able to modify protected parts of the file system." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "A remote attacker may be able to cause unexpected app termination or arbitrary code execution" + "value": "An app may be able to modify protected parts of the file system" } ] } diff --git a/2023/32xxx/CVE-2023-32357.json b/2023/32xxx/CVE-2023-32357.json index eb3e11e9d42..ff975f852cf 100644 --- a/2023/32xxx/CVE-2023-32357.json +++ b/2023/32xxx/CVE-2023-32357.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.4, macOS Monterey 12.6.6, tvOS 16.5, watchOS 9.5, iOS 16.5 and iPadOS 16.5, macOS Big Sur 11.7.7. An app may be able to disclose kernel memory." + "value": "An authorization issue was addressed with improved state management. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to retain access to system configuration files even after its permission is revoked." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to retain access to system configuration files even after its permission is revoked" } ] } diff --git a/2023/32xxx/CVE-2023-32360.json b/2023/32xxx/CVE-2023-32360.json index cc9073502a1..3cbd8ba7258 100644 --- a/2023/32xxx/CVE-2023-32360.json +++ b/2023/32xxx/CVE-2023-32360.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.7.7, macOS Ventura 13.4, macOS Monterey 12.6.6. A remote attacker may be able to cause unexpected app termination or arbitrary code execution." + "value": "An authentication issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An unauthenticated user may be able to access recently printed documents." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "A remote attacker may be able to cause unexpected app termination or arbitrary code execution" + "value": "An unauthenticated user may be able to access recently printed documents" } ] } diff --git a/2023/32xxx/CVE-2023-32363.json b/2023/32xxx/CVE-2023-32363.json index 02d03abb1b9..1b97d14abb6 100644 --- a/2023/32xxx/CVE-2023-32363.json +++ b/2023/32xxx/CVE-2023-32363.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.4. An app may be able to disclose kernel memory." + "value": "A permissions issue was addressed by removing vulnerable code and adding additional checks. This issue is fixed in macOS Ventura 13.4. An app may be able to bypass Privacy preferences." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to bypass Privacy preferences" } ] } diff --git a/2023/32xxx/CVE-2023-32364.json b/2023/32xxx/CVE-2023-32364.json index 5c2fcebc014..743d8c2d3ca 100644 --- a/2023/32xxx/CVE-2023-32364.json +++ b/2023/32xxx/CVE-2023-32364.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.5. Processing web content may disclose sensitive information." + "value": "A logic issue was addressed with improved restrictions. This issue is fixed in macOS Ventura 13.5. A sandboxed process may be able to circumvent sandbox restrictions." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing web content may disclose sensitive information" + "value": "A sandboxed process may be able to circumvent sandbox restrictions" } ] } diff --git a/2023/32xxx/CVE-2023-32365.json b/2023/32xxx/CVE-2023-32365.json index 0b78587181c..7802422aae1 100644 --- a/2023/32xxx/CVE-2023-32365.json +++ b/2023/32xxx/CVE-2023-32365.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, iOS 15.7.6 and iPadOS 15.7.6. An app may be able to disclose kernel memory." + "value": "The issue was addressed with improved checks. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, iOS 16.5 and iPadOS 16.5. Shake-to-undo may allow a deleted photo to be re-surfaced without authentication." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "Shake-to-undo may allow a deleted photo to be re-surfaced without authentication" } ] } diff --git a/2023/32xxx/CVE-2023-32367.json b/2023/32xxx/CVE-2023-32367.json index 0b2f84f525d..b96bd8a60ae 100644 --- a/2023/32xxx/CVE-2023-32367.json +++ b/2023/32xxx/CVE-2023-32367.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4. An app may be able to disclose kernel memory." + "value": "This issue was addressed with improved entitlements. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4. An app may be able to access user-sensitive data." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to access user-sensitive data" } ] } diff --git a/2023/32xxx/CVE-2023-32368.json b/2023/32xxx/CVE-2023-32368.json index 42b16342863..7eabfce7fd1 100644 --- a/2023/32xxx/CVE-2023-32368.json +++ b/2023/32xxx/CVE-2023-32368.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.4, macOS Monterey 12.6.6, tvOS 16.5, watchOS 9.5, iOS 16.5 and iPadOS 16.5. An app may be able to disclose kernel memory." + "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. Processing a 3D model may result in disclosure of process memory." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "Processing a 3D model may result in disclosure of process memory" } ] } diff --git a/2023/32xxx/CVE-2023-32369.json b/2023/32xxx/CVE-2023-32369.json index c434f37927a..ae0953203b5 100644 --- a/2023/32xxx/CVE-2023-32369.json +++ b/2023/32xxx/CVE-2023-32369.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.7.7, macOS Ventura 13.4, macOS Monterey 12.6.6. A remote attacker may be able to cause unexpected app termination or arbitrary code execution." + "value": "A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An app may be able to modify protected parts of the file system." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "A remote attacker may be able to cause unexpected app termination or arbitrary code execution" + "value": "An app may be able to modify protected parts of the file system" } ] } diff --git a/2023/32xxx/CVE-2023-32371.json b/2023/32xxx/CVE-2023-32371.json index a6e195b1cca..6c3b13b2aac 100644 --- a/2023/32xxx/CVE-2023-32371.json +++ b/2023/32xxx/CVE-2023-32371.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4. An app may be able to disclose kernel memory." + "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4. An app may be able to break out of its sandbox." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to break out of its sandbox" } ] } diff --git a/2023/32xxx/CVE-2023-32372.json b/2023/32xxx/CVE-2023-32372.json index 9fc7b0f1f1f..8dde0487e97 100644 --- a/2023/32xxx/CVE-2023-32372.json +++ b/2023/32xxx/CVE-2023-32372.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4, watchOS 9.5, tvOS 16.5. An app may be able to disclose kernel memory." + "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. Processing an image may result in disclosure of process memory." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "Processing an image may result in disclosure of process memory" } ] } diff --git a/2023/32xxx/CVE-2023-32373.json b/2023/32xxx/CVE-2023-32373.json index 9f6a78e1f48..1cd5a7713bd 100644 --- a/2023/32xxx/CVE-2023-32373.json +++ b/2023/32xxx/CVE-2023-32373.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, macOS Ventura 13.4, tvOS 16.5, watchOS 9.5, iOS 16.5 and iPadOS 16.5, Safari 16.5. An app may be able to disclose kernel memory." + "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, Safari 16.5, iOS 16.5 and iPadOS 16.5. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited." } ] } diff --git a/2023/32xxx/CVE-2023-32375.json b/2023/32xxx/CVE-2023-32375.json index a755ec5694e..fb53ec5b388 100644 --- a/2023/32xxx/CVE-2023-32375.json +++ b/2023/32xxx/CVE-2023-32375.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved handling of caches. This issue is fixed in macOS Ventura 13.4, macOS Monterey 12.6.6. An app may be able to read sensitive location information." + "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6.6, macOS Ventura 13.4. Processing a 3D model may result in disclosure of process memory." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to read sensitive location information" + "value": "Processing a 3D model may result in disclosure of process memory" } ] } diff --git a/2023/32xxx/CVE-2023-32376.json b/2023/32xxx/CVE-2023-32376.json index b7101c2c2ff..5c4fd1d783d 100644 --- a/2023/32xxx/CVE-2023-32376.json +++ b/2023/32xxx/CVE-2023-32376.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4, watchOS 9.5, tvOS 16.5. An app may be able to disclose kernel memory." + "value": "This issue was addressed with improved entitlements. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. An app may be able to modify protected parts of the file system." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to modify protected parts of the file system" } ] } diff --git a/2023/32xxx/CVE-2023-32380.json b/2023/32xxx/CVE-2023-32380.json index bc78e665ccb..7c8a3fa37ba 100644 --- a/2023/32xxx/CVE-2023-32380.json +++ b/2023/32xxx/CVE-2023-32380.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.7.7, macOS Ventura 13.4, macOS Monterey 12.6.6. A remote attacker may be able to cause unexpected app termination or arbitrary code execution." + "value": "An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. Processing a 3D model may lead to arbitrary code execution." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "A remote attacker may be able to cause unexpected app termination or arbitrary code execution" + "value": "Processing a 3D model may lead to arbitrary code execution" } ] } diff --git a/2023/32xxx/CVE-2023-32381.json b/2023/32xxx/CVE-2023-32381.json index 3d6742d9976..863abf63f39 100644 --- a/2023/32xxx/CVE-2023-32381.json +++ b/2023/32xxx/CVE-2023-32381.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Monterey 12.6.8, tvOS 16.6, watchOS 9.6, macOS Big Sur 11.7.9, macOS Ventura 13.5. Processing web content may disclose sensitive information." + "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.6.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to execute arbitrary code with kernel privileges." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing web content may disclose sensitive information" + "value": "An app may be able to execute arbitrary code with kernel privileges" } ] } diff --git a/2023/32xxx/CVE-2023-32382.json b/2023/32xxx/CVE-2023-32382.json index cae4b4f5f00..4bc769bc2c0 100644 --- a/2023/32xxx/CVE-2023-32382.json +++ b/2023/32xxx/CVE-2023-32382.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.7.7, macOS Ventura 13.4, macOS Monterey 12.6.6. A remote attacker may be able to cause unexpected app termination or arbitrary code execution." + "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. Processing a 3D model may result in disclosure of process memory." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "A remote attacker may be able to cause unexpected app termination or arbitrary code execution" + "value": "Processing a 3D model may result in disclosure of process memory" } ] } diff --git a/2023/32xxx/CVE-2023-32384.json b/2023/32xxx/CVE-2023-32384.json index dd8187efbe1..b3111620c9d 100644 --- a/2023/32xxx/CVE-2023-32384.json +++ b/2023/32xxx/CVE-2023-32384.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, macOS Ventura 13.4, macOS Monterey 12.6.6, tvOS 16.5, watchOS 9.5, iOS 16.5 and iPadOS 16.5, macOS Big Sur 11.7.7. An app may be able to disclose kernel memory." + "value": "A buffer overflow was addressed with improved bounds checking. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. Processing an image may lead to arbitrary code execution." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "Processing an image may lead to arbitrary code execution" } ] } diff --git a/2023/32xxx/CVE-2023-32385.json b/2023/32xxx/CVE-2023-32385.json index 830788dad96..fd9cbd7e28e 100644 --- a/2023/32xxx/CVE-2023-32385.json +++ b/2023/32xxx/CVE-2023-32385.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4. An app may be able to disclose kernel memory." + "value": "A denial-of-service issue was addressed with improved memory handling. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4. Opening a PDF file may lead to unexpected app termination." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "Opening a PDF file may lead to unexpected app termination" } ] } diff --git a/2023/32xxx/CVE-2023-32386.json b/2023/32xxx/CVE-2023-32386.json index 06a4929f947..1c4646a0fb5 100644 --- a/2023/32xxx/CVE-2023-32386.json +++ b/2023/32xxx/CVE-2023-32386.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.7.7, macOS Ventura 13.4, macOS Monterey 12.6.6. A remote attacker may be able to cause unexpected app termination or arbitrary code execution." + "value": "A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An app may be able to observe unprotected user data." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "A remote attacker may be able to cause unexpected app termination or arbitrary code execution" + "value": "An app may be able to observe unprotected user data" } ] } diff --git a/2023/32xxx/CVE-2023-32387.json b/2023/32xxx/CVE-2023-32387.json index 165171f0b1f..561ee9d8751 100644 --- a/2023/32xxx/CVE-2023-32387.json +++ b/2023/32xxx/CVE-2023-32387.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.7.7, macOS Ventura 13.4, macOS Monterey 12.6.6. A remote attacker may be able to cause unexpected app termination or arbitrary code execution." + "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. A remote attacker may be able to cause unexpected app termination or arbitrary code execution." } ] }, diff --git a/2023/32xxx/CVE-2023-32388.json b/2023/32xxx/CVE-2023-32388.json index 93cf8270320..8a0b7bfa3be 100644 --- a/2023/32xxx/CVE-2023-32388.json +++ b/2023/32xxx/CVE-2023-32388.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, macOS Ventura 13.4, macOS Monterey 12.6.6, watchOS 9.5, iOS 16.5 and iPadOS 16.5, macOS Big Sur 11.7.7. An app may be able to disclose kernel memory." + "value": "A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in watchOS 9.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to bypass Privacy preferences." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to bypass Privacy preferences" } ] } diff --git a/2023/32xxx/CVE-2023-32389.json b/2023/32xxx/CVE-2023-32389.json index 68173282c53..8d6c49bc257 100644 --- a/2023/32xxx/CVE-2023-32389.json +++ b/2023/32xxx/CVE-2023-32389.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4, watchOS 9.5, tvOS 16.5. An app may be able to disclose kernel memory." + "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. An app may be able to disclose kernel memory." } ] }, diff --git a/2023/32xxx/CVE-2023-32390.json b/2023/32xxx/CVE-2023-32390.json index df490f6d79f..3d90d92e2bc 100644 --- a/2023/32xxx/CVE-2023-32390.json +++ b/2023/32xxx/CVE-2023-32390.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4, watchOS 9.5. An app may be able to disclose kernel memory." + "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, macOS Ventura 13.4. Photos belonging to the Hidden Photos Album could be viewed without authentication through Visual Lookup." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "Photos belonging to the Hidden Photos Album could be viewed without authentication through Visual Lookup" } ] } diff --git a/2023/32xxx/CVE-2023-32391.json b/2023/32xxx/CVE-2023-32391.json index 1e2e8cd4b2a..e2d04697942 100644 --- a/2023/32xxx/CVE-2023-32391.json +++ b/2023/32xxx/CVE-2023-32391.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, iOS 15.7.6 and iPadOS 15.7.6, macOS Ventura 13.4, watchOS 9.5. An app may be able to disclose kernel memory." + "value": "The issue was addressed with improved checks. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, watchOS 9.5, iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4. A shortcut may be able to use sensitive data with certain actions without prompting the user." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "A shortcut may be able to use sensitive data with certain actions without prompting the user" } ] } diff --git a/2023/32xxx/CVE-2023-32392.json b/2023/32xxx/CVE-2023-32392.json index ba84729a18d..e53ec2f6cff 100644 --- a/2023/32xxx/CVE-2023-32392.json +++ b/2023/32xxx/CVE-2023-32392.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.4, macOS Monterey 12.6.6, tvOS 16.5, watchOS 9.5, iOS 16.5 and iPadOS 16.5, macOS Big Sur 11.7.7. An app may be able to disclose kernel memory." + "value": "A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to read sensitive location information." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to read sensitive location information" } ] } diff --git a/2023/32xxx/CVE-2023-32393.json b/2023/32xxx/CVE-2023-32393.json index f6a00db5b43..28d881ea1df 100644 --- a/2023/32xxx/CVE-2023-32393.json +++ b/2023/32xxx/CVE-2023-32393.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved memory handling. This issue is fixed in tvOS 16.3, macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3, watchOS 9.3. Processing maliciously crafted web content may lead to arbitrary code execution." + "value": "The issue was addressed with improved memory handling. This issue is fixed in watchOS 9.3, tvOS 16.3, macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3. Processing web content may lead to arbitrary code execution." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing maliciously crafted web content may lead to arbitrary code execution" + "value": "Processing web content may lead to arbitrary code execution" } ] } diff --git a/2023/32xxx/CVE-2023-32394.json b/2023/32xxx/CVE-2023-32394.json index ba4094b6b2d..dd3705e626a 100644 --- a/2023/32xxx/CVE-2023-32394.json +++ b/2023/32xxx/CVE-2023-32394.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4, watchOS 9.5, tvOS 16.5. An app may be able to disclose kernel memory." + "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. A person with physical access to a device may be able to view contact information from the lock screen." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "A person with physical access to a device may be able to view contact information from the lock screen" } ] } diff --git a/2023/32xxx/CVE-2023-32395.json b/2023/32xxx/CVE-2023-32395.json index 19dd77f660b..f6f15d567b6 100644 --- a/2023/32xxx/CVE-2023-32395.json +++ b/2023/32xxx/CVE-2023-32395.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.7.7, macOS Ventura 13.4, macOS Monterey 12.6.6. A remote attacker may be able to cause unexpected app termination or arbitrary code execution." + "value": "A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An app may be able to modify protected parts of the file system." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "A remote attacker may be able to cause unexpected app termination or arbitrary code execution" + "value": "An app may be able to modify protected parts of the file system" } ] } diff --git a/2023/32xxx/CVE-2023-32397.json b/2023/32xxx/CVE-2023-32397.json index b3e170f7ce8..fa870346b20 100644 --- a/2023/32xxx/CVE-2023-32397.json +++ b/2023/32xxx/CVE-2023-32397.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Ventura 13.4, macOS Monterey 12.6.6. A remote attacker may be able to cause unexpected app termination or arbitrary code execution." + "value": "A logic issue was addressed with improved state management. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An app may be able to modify protected parts of the file system." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "A remote attacker may be able to cause unexpected app termination or arbitrary code execution" + "value": "An app may be able to modify protected parts of the file system" } ] } diff --git a/2023/32xxx/CVE-2023-32398.json b/2023/32xxx/CVE-2023-32398.json index 7f58be9969c..ca77d5426b4 100644 --- a/2023/32xxx/CVE-2023-32398.json +++ b/2023/32xxx/CVE-2023-32398.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, macOS Ventura 13.4, macOS Monterey 12.6.6, tvOS 16.5, watchOS 9.5, iOS 16.5 and iPadOS 16.5, macOS Big Sur 11.7.7. An app may be able to disclose kernel memory." + "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to execute arbitrary code with kernel privileges." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to execute arbitrary code with kernel privileges" } ] } diff --git a/2023/32xxx/CVE-2023-32399.json b/2023/32xxx/CVE-2023-32399.json index 3612be984bc..707c40a5faf 100644 --- a/2023/32xxx/CVE-2023-32399.json +++ b/2023/32xxx/CVE-2023-32399.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4, watchOS 9.5, tvOS 16.5. An app may be able to disclose kernel memory." + "value": "The issue was addressed with improved handling of caches. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. An app may be able to read sensitive location information." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to read sensitive location information" } ] } diff --git a/2023/32xxx/CVE-2023-32402.json b/2023/32xxx/CVE-2023-32402.json index ff080d3426b..f9a407bf3a3 100644 --- a/2023/32xxx/CVE-2023-32402.json +++ b/2023/32xxx/CVE-2023-32402.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.4, tvOS 16.5, watchOS 9.5, iOS 16.5 and iPadOS 16.5, Safari 16.5. An app may be able to disclose kernel memory." + "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, Safari 16.5, iOS 16.5 and iPadOS 16.5. Processing web content may disclose sensitive information." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "Processing web content may disclose sensitive information" } ] } diff --git a/2023/32xxx/CVE-2023-32403.json b/2023/32xxx/CVE-2023-32403.json index ec7af0e6141..23fa2c52fb6 100644 --- a/2023/32xxx/CVE-2023-32403.json +++ b/2023/32xxx/CVE-2023-32403.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, macOS Ventura 13.4, macOS Monterey 12.6.6, tvOS 16.5, watchOS 9.5, iOS 16.5 and iPadOS 16.5, macOS Big Sur 11.7.7. An app may be able to disclose kernel memory." + "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to read sensitive location information." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to read sensitive location information" } ] } diff --git a/2023/32xxx/CVE-2023-32404.json b/2023/32xxx/CVE-2023-32404.json index 77ac3ff7dec..31891c168e5 100644 --- a/2023/32xxx/CVE-2023-32404.json +++ b/2023/32xxx/CVE-2023-32404.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4, watchOS 9.5. An app may be able to disclose kernel memory." + "value": "This issue was addressed with improved entitlements. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, macOS Ventura 13.4. An app may be able to bypass Privacy preferences." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to bypass Privacy preferences" } ] } diff --git a/2023/32xxx/CVE-2023-32405.json b/2023/32xxx/CVE-2023-32405.json index 396cfca0a20..7c5f5360dcd 100644 --- a/2023/32xxx/CVE-2023-32405.json +++ b/2023/32xxx/CVE-2023-32405.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.7.7, macOS Ventura 13.4, macOS Monterey 12.6.6. A remote attacker may be able to cause unexpected app termination or arbitrary code execution." + "value": "A logic issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An app may be able to gain root privileges." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "A remote attacker may be able to cause unexpected app termination or arbitrary code execution" + "value": "An app may be able to gain root privileges" } ] } diff --git a/2023/32xxx/CVE-2023-32407.json b/2023/32xxx/CVE-2023-32407.json index 064e8b93189..30a0dbaf77e 100644 --- a/2023/32xxx/CVE-2023-32407.json +++ b/2023/32xxx/CVE-2023-32407.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, macOS Ventura 13.4, macOS Monterey 12.6.6, tvOS 16.5, watchOS 9.5, iOS 16.5 and iPadOS 16.5, macOS Big Sur 11.7.7. An app may be able to disclose kernel memory." + "value": "A logic issue was addressed with improved state management. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to bypass Privacy preferences." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to bypass Privacy preferences" } ] } diff --git a/2023/32xxx/CVE-2023-32408.json b/2023/32xxx/CVE-2023-32408.json index 15bc6b06f64..14993982827 100644 --- a/2023/32xxx/CVE-2023-32408.json +++ b/2023/32xxx/CVE-2023-32408.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, macOS Ventura 13.4, macOS Monterey 12.6.6, tvOS 16.5, watchOS 9.5, iOS 16.5 and iPadOS 16.5. An app may be able to disclose kernel memory." + "value": "The issue was addressed with improved handling of caches. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to read sensitive location information." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to read sensitive location information" } ] } diff --git a/2023/32xxx/CVE-2023-32409.json b/2023/32xxx/CVE-2023-32409.json index 9f037fd1f45..05a4d1b2957 100644 --- a/2023/32xxx/CVE-2023-32409.json +++ b/2023/32xxx/CVE-2023-32409.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.4, iOS 15.7.8 and iPadOS 15.7.8, tvOS 16.5, watchOS 9.5, iOS 16.5 and iPadOS 16.5, Safari 16.5. An app may be able to disclose kernel memory." + "value": "The issue was addressed with improved bounds checks. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.8 and iPadOS 15.7.8, Safari 16.5, iOS 16.5 and iPadOS 16.5. A remote attacker may be able to break out of Web Content sandbox. Apple is aware of a report that this issue may have been actively exploited." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "A remote attacker may be able to break out of Web Content sandbox. Apple is aware of a report that this issue may have been actively exploited." } ] } diff --git a/2023/32xxx/CVE-2023-32410.json b/2023/32xxx/CVE-2023-32410.json index 6c3964d5c99..b4c7768e895 100644 --- a/2023/32xxx/CVE-2023-32410.json +++ b/2023/32xxx/CVE-2023-32410.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Ventura 13.4, macOS Monterey 12.6.6. A remote attacker may be able to cause unexpected app termination or arbitrary code execution." + "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An app may be able to leak sensitive kernel state." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "A remote attacker may be able to cause unexpected app termination or arbitrary code execution" + "value": "An app may be able to leak sensitive kernel state" } ] } diff --git a/2023/32xxx/CVE-2023-32411.json b/2023/32xxx/CVE-2023-32411.json index 80f234d0ed1..2fe31e6f666 100644 --- a/2023/32xxx/CVE-2023-32411.json +++ b/2023/32xxx/CVE-2023-32411.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.4, macOS Monterey 12.6.6, tvOS 16.5, iOS 16.5 and iPadOS 16.5, macOS Big Sur 11.7.7. An app may be able to disclose kernel memory." + "value": "This issue was addressed with improved entitlements. This issue is fixed in tvOS 16.5, macOS Ventura 13.4, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to bypass Privacy preferences." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to bypass Privacy preferences" } ] } diff --git a/2023/32xxx/CVE-2023-32412.json b/2023/32xxx/CVE-2023-32412.json index 6fb65205a5b..1d9cc6d02ef 100644 --- a/2023/32xxx/CVE-2023-32412.json +++ b/2023/32xxx/CVE-2023-32412.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, macOS Ventura 13.4, macOS Monterey 12.6.6, tvOS 16.5, watchOS 9.5, iOS 16.5 and iPadOS 16.5, macOS Big Sur 11.7.7. An app may be able to disclose kernel memory." + "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. A remote attacker may be able to cause unexpected app termination or arbitrary code execution." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "A remote attacker may be able to cause unexpected app termination or arbitrary code execution" } ] } diff --git a/2023/32xxx/CVE-2023-32413.json b/2023/32xxx/CVE-2023-32413.json index 7305c755786..d68aec05276 100644 --- a/2023/32xxx/CVE-2023-32413.json +++ b/2023/32xxx/CVE-2023-32413.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 15.7.6 and iPadOS 15.7.6, macOS Ventura 13.4, macOS Monterey 12.6.6, tvOS 16.5, watchOS 9.5, iOS 16.5 and iPadOS 16.5, macOS Big Sur 11.7.7. An app may be able to disclose kernel memory." + "value": "A race condition was addressed with improved state handling. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to gain root privileges." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to gain root privileges" } ] } diff --git a/2023/32xxx/CVE-2023-32414.json b/2023/32xxx/CVE-2023-32414.json index e47f76fcccd..aa9c3e8b3cb 100644 --- a/2023/32xxx/CVE-2023-32414.json +++ b/2023/32xxx/CVE-2023-32414.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.4. An app may be able to disclose kernel memory." + "value": "The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.4. An app may be able to break out of its sandbox." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to break out of its sandbox" } ] } diff --git a/2023/32xxx/CVE-2023-32415.json b/2023/32xxx/CVE-2023-32415.json index d7839833dc6..2d47bb25474 100644 --- a/2023/32xxx/CVE-2023-32415.json +++ b/2023/32xxx/CVE-2023-32415.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4, tvOS 16.5. An app may be able to disclose kernel memory." + "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, tvOS 16.5, macOS Ventura 13.4. An app may be able to read sensitive location information." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to read sensitive location information" } ] } diff --git a/2023/32xxx/CVE-2023-32416.json b/2023/32xxx/CVE-2023-32416.json index ad16cfec28d..2a593749dbf 100644 --- a/2023/32xxx/CVE-2023-32416.json +++ b/2023/32xxx/CVE-2023-32416.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A logic issue was addressed with improved restrictions. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Monterey 12.6.8, watchOS 9.6, macOS Ventura 13.5, iOS 15.7.8 and iPadOS 15.7.8. An app may be able to read sensitive location information." + "value": "A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12.6.8, iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5, watchOS 9.6. An app may be able to read sensitive location information." } ] }, diff --git a/2023/32xxx/CVE-2023-32417.json b/2023/32xxx/CVE-2023-32417.json index c4ebd03919a..063f8eb55bd 100644 --- a/2023/32xxx/CVE-2023-32417.json +++ b/2023/32xxx/CVE-2023-32417.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in watchOS 9.5. An app may be able to disclose kernel memory." + "value": "This issue was addressed by restricting options offered on a locked device. This issue is fixed in watchOS 9.5. An attacker with physical access to a locked Apple Watch may be able to view user photos or contacts via accessibility features." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An attacker with physical access to a locked Apple Watch may be able to view user photos or contacts via accessibility features" } ] } diff --git a/2023/32xxx/CVE-2023-32418.json b/2023/32xxx/CVE-2023-32418.json index 7a8baee16f7..1fbdd5833a9 100644 --- a/2023/32xxx/CVE-2023-32418.json +++ b/2023/32xxx/CVE-2023-32418.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.5, macOS Monterey 12.6.8, macOS Big Sur 11.7.9. Processing a file may lead to a denial-of-service or potentially disclose memory contents." + "value": "The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.8, macOS Ventura 13.5, macOS Big Sur 11.7.9. Processing a file may lead to unexpected app termination or arbitrary code execution." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing a file may lead to a denial-of-service or potentially disclose memory contents" + "value": "Processing a file may lead to unexpected app termination or arbitrary code execution" } ] } diff --git a/2023/32xxx/CVE-2023-32419.json b/2023/32xxx/CVE-2023-32419.json index 80077bf96ff..b7f623c3ebb 100644 --- a/2023/32xxx/CVE-2023-32419.json +++ b/2023/32xxx/CVE-2023-32419.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5. An app may be able to disclose kernel memory." + "value": "The issue was addressed with improved bounds checks. This issue is fixed in iOS 16.5 and iPadOS 16.5. A remote attacker may be able to cause arbitrary code execution." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "A remote attacker may be able to cause arbitrary code execution" } ] } diff --git a/2023/32xxx/CVE-2023-32420.json b/2023/32xxx/CVE-2023-32420.json index c895fa2aa6b..70dd26b185e 100644 --- a/2023/32xxx/CVE-2023-32420.json +++ b/2023/32xxx/CVE-2023-32420.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, macOS Ventura 13.4, tvOS 16.5. An app may be able to cause unexpected system termination or read kernel memory." + "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 16.5 and iPadOS 16.5, watchOS 9.5, tvOS 16.5, macOS Ventura 13.4. An app may be able to cause unexpected system termination or read kernel memory." } ] }, diff --git a/2023/32xxx/CVE-2023-32422.json b/2023/32xxx/CVE-2023-32422.json index 54437d0db71..945a688f11d 100644 --- a/2023/32xxx/CVE-2023-32422.json +++ b/2023/32xxx/CVE-2023-32422.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.5 and iPadOS 16.5, macOS Ventura 13.4, tvOS 16.5. An app may be able to disclose kernel memory." + "value": "This issue was addressed by adding additional SQLite logging restrictions. This issue is fixed in iOS 16.5 and iPadOS 16.5, tvOS 16.5, macOS Ventura 13.4. An app may be able to bypass Privacy preferences." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "An app may be able to bypass Privacy preferences" } ] } diff --git a/2023/32xxx/CVE-2023-32423.json b/2023/32xxx/CVE-2023-32423.json index 77bf7f9ad98..4d6f933287f 100644 --- a/2023/32xxx/CVE-2023-32423.json +++ b/2023/32xxx/CVE-2023-32423.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Ventura 13.4, tvOS 16.5, watchOS 9.5, iOS 16.5 and iPadOS 16.5, Safari 16.5. An app may be able to disclose kernel memory." + "value": "A buffer overflow issue was addressed with improved memory handling. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, Safari 16.5, iOS 16.5 and iPadOS 16.5. Processing web content may disclose sensitive information." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "An app may be able to disclose kernel memory" + "value": "Processing web content may disclose sensitive information" } ] } diff --git a/2023/32xxx/CVE-2023-32429.json b/2023/32xxx/CVE-2023-32429.json index 086c0e9c7ff..e17962eeb97 100644 --- a/2023/32xxx/CVE-2023-32429.json +++ b/2023/32xxx/CVE-2023-32429.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.5. Processing web content may disclose sensitive information." + "value": "The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.5. An app may be able to bypass Privacy preferences." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing web content may disclose sensitive information" + "value": "An app may be able to bypass Privacy preferences" } ] } diff --git a/2023/32xxx/CVE-2023-32433.json b/2023/32xxx/CVE-2023-32433.json index 1e9a6a545f0..51ac3351e8e 100644 --- a/2023/32xxx/CVE-2023-32433.json +++ b/2023/32xxx/CVE-2023-32433.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, iOS 15.7.8 and iPadOS 15.7.8, tvOS 16.6, macOS Monterey 12.6.8, watchOS 9.6, macOS Big Sur 11.7.9, macOS Ventura 13.5. Processing web content may disclose sensitive information." + "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.6.8, iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to execute arbitrary code with kernel privileges." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing web content may disclose sensitive information" + "value": "An app may be able to execute arbitrary code with kernel privileges" } ] } diff --git a/2023/32xxx/CVE-2023-32434.json b/2023/32xxx/CVE-2023-32434.json index bc89c11aef5..948aeb89917 100644 --- a/2023/32xxx/CVE-2023-32434.json +++ b/2023/32xxx/CVE-2023-32434.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "An integer overflow was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6.7, iOS 16.5.1 and iPadOS 16.5.1, iOS 15.7.7 and iPadOS 15.7.7, macOS Big Sur 11.7.8, watchOS 9.5.2, macOS Ventura 13.4.1, watchOS 8.8.1. An app may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7." + "value": "An integer overflow was addressed with improved input validation. This issue is fixed in watchOS 9.5.2, macOS Big Sur 11.7.8, iOS 15.7.7 and iPadOS 15.7.7, macOS Monterey 12.6.7, watchOS 8.8.1, iOS 16.5.1 and iPadOS 16.5.1, macOS Ventura 13.4.1. An app may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7." } ] }, diff --git a/2023/32xxx/CVE-2023-32435.json b/2023/32xxx/CVE-2023-32435.json index 57d7470c1d9..f3f084a7bfc 100644 --- a/2023/32xxx/CVE-2023-32435.json +++ b/2023/32xxx/CVE-2023-32435.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "This issue was addressed with improved state management. This issue is fixed in iOS 16.4 and iPadOS 16.4, iOS 15.7.7 and iPadOS 15.7.7, Safari 16.4, macOS Ventura 13.3. A remote attacker may be able to cause unexpected app termination or arbitrary code execution." + "value": "A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.3, Safari 16.4, iOS 16.4 and iPadOS 16.4, iOS 15.7.7 and iPadOS 15.7.7. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "A remote attacker may be able to cause unexpected app termination or arbitrary code execution" + "value": "Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7." } ] } diff --git a/2023/32xxx/CVE-2023-32437.json b/2023/32xxx/CVE-2023-32437.json index ba173a987a1..42d2e7b3ce7 100644 --- a/2023/32xxx/CVE-2023-32437.json +++ b/2023/32xxx/CVE-2023-32437.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6. Processing web content may disclose sensitive information." + "value": "The issue was addressed with improvements to the file handling protocol. This issue is fixed in iOS 16.6 and iPadOS 16.6. An app may be able to break out of its sandbox." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing web content may disclose sensitive information" + "value": "An app may be able to break out of its sandbox" } ] } diff --git a/2023/32xxx/CVE-2023-32439.json b/2023/32xxx/CVE-2023-32439.json index dc46180b6af..388fcfd5f23 100644 --- a/2023/32xxx/CVE-2023-32439.json +++ b/2023/32xxx/CVE-2023-32439.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A type confusion issue was addressed with improved checks. This issue is fixed in Safari 16.5.1, iOS 15.7.7 and iPadOS 15.7.7, macOS Ventura 13.4.1, iOS 16.5.1 and iPadOS 16.5.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited." + "value": "A type confusion issue was addressed with improved checks. This issue is fixed in iOS 16.5.1 and iPadOS 16.5.1, iOS 15.7.7 and iPadOS 15.7.7, macOS Ventura 13.4.1, Safari 16.5.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited." } ] }, diff --git a/2023/32xxx/CVE-2023-32441.json b/2023/32xxx/CVE-2023-32441.json index b191554fb88..ba6143708c7 100644 --- a/2023/32xxx/CVE-2023-32441.json +++ b/2023/32xxx/CVE-2023-32441.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved memory handling. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Big Sur 11.7.9, macOS Monterey 12.6.8, tvOS 16.6, watchOS 9.6, macOS Ventura 13.5, iOS 15.7.8 and iPadOS 15.7.8. An app may be able to execute arbitrary code with kernel privileges." + "value": "The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.8, iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to execute arbitrary code with kernel privileges." } ] }, diff --git a/2023/32xxx/CVE-2023-32442.json b/2023/32xxx/CVE-2023-32442.json index 4ba8c25f639..984a87e33dd 100644 --- a/2023/32xxx/CVE-2023-32442.json +++ b/2023/32xxx/CVE-2023-32442.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.5, macOS Monterey 12.6.8. Processing a file may lead to a denial-of-service or potentially disclose memory contents." + "value": "An access issue was addressed with improved access restrictions. This issue is fixed in macOS Ventura 13.5, macOS Monterey 12.6.8. A shortcut may be able to modify sensitive Shortcuts app settings." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing a file may lead to a denial-of-service or potentially disclose memory contents" + "value": "A shortcut may be able to modify sensitive Shortcuts app settings" } ] } diff --git a/2023/32xxx/CVE-2023-32443.json b/2023/32xxx/CVE-2023-32443.json index 085c29397fc..5e347de4c04 100644 --- a/2023/32xxx/CVE-2023-32443.json +++ b/2023/32xxx/CVE-2023-32443.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.5, macOS Monterey 12.6.8, macOS Big Sur 11.7.9. Processing a file may lead to a denial-of-service or potentially disclose memory contents." + "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6.8, macOS Ventura 13.5, macOS Big Sur 11.7.9. Processing a file may lead to a denial-of-service or potentially disclose memory contents." } ] }, diff --git a/2023/32xxx/CVE-2023-32734.json b/2023/32xxx/CVE-2023-32734.json index df40c7c5e00..9fac19c9bdc 100644 --- a/2023/32xxx/CVE-2023-32734.json +++ b/2023/32xxx/CVE-2023-32734.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved memory handling. This issue is fixed in tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5, watchOS 9.6. An app may be able to execute arbitrary code with kernel privileges." + "value": "The issue was addressed with improved memory handling. This issue is fixed in iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, watchOS 9.6. An app may be able to execute arbitrary code with kernel privileges." } ] }, diff --git a/2023/35xxx/CVE-2023-35993.json b/2023/35xxx/CVE-2023-35993.json index 456690a3516..37a7e2f816a 100644 --- a/2023/35xxx/CVE-2023-35993.json +++ b/2023/35xxx/CVE-2023-35993.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Big Sur 11.7.9, macOS Monterey 12.6.8, tvOS 16.6, watchOS 9.6, macOS Ventura 13.5, iOS 15.7.8 and iPadOS 15.7.8. An app may be able to execute arbitrary code with kernel privileges." + "value": "A use-after-free issue was addressed with improved memory management. This issue is fixed in macOS Monterey 12.6.8, iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to execute arbitrary code with kernel privileges." } ] }, diff --git a/2023/36xxx/CVE-2023-36854.json b/2023/36xxx/CVE-2023-36854.json index 8740120f55c..c3b69b401ff 100644 --- a/2023/36xxx/CVE-2023-36854.json +++ b/2023/36xxx/CVE-2023-36854.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.5, macOS Monterey 12.6.8, macOS Big Sur 11.7.9. Processing a file may lead to a denial-of-service or potentially disclose memory contents." + "value": "The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.8, macOS Ventura 13.5, macOS Big Sur 11.7.9. Processing a file may lead to unexpected app termination or arbitrary code execution." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing a file may lead to a denial-of-service or potentially disclose memory contents" + "value": "Processing a file may lead to unexpected app termination or arbitrary code execution" } ] } diff --git a/2023/36xxx/CVE-2023-36862.json b/2023/36xxx/CVE-2023-36862.json index de961f96096..e2f760aca6e 100644 --- a/2023/36xxx/CVE-2023-36862.json +++ b/2023/36xxx/CVE-2023-36862.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.5. Processing web content may disclose sensitive information." + "value": "A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Ventura 13.5. An app may be able to determine a user\u2019s current location." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing web content may disclose sensitive information" + "value": "An app may be able to determine a user\u2019s current location" } ] } diff --git a/2023/37xxx/CVE-2023-37450.json b/2023/37xxx/CVE-2023-37450.json index eb775598d82..152642a47f7 100644 --- a/2023/37xxx/CVE-2023-37450.json +++ b/2023/37xxx/CVE-2023-37450.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, tvOS 16.6, watchOS 9.6, macOS Ventura 13.5, Safari 16.5.2. Processing web content may disclose sensitive information." + "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, Safari 16.5.2, tvOS 16.6, macOS Ventura 13.5, watchOS 9.6. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing web content may disclose sensitive information" + "value": "Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited." } ] } diff --git a/2023/38xxx/CVE-2023-38133.json b/2023/38xxx/CVE-2023-38133.json index c31d4bacd6d..135da44352e 100644 --- a/2023/38xxx/CVE-2023-38133.json +++ b/2023/38xxx/CVE-2023-38133.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, tvOS 16.6, watchOS 9.6, macOS Ventura 13.5, iOS 15.7.8 and iPadOS 15.7.8, Safari 16.6. Processing web content may disclose sensitive information." + "value": "The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may disclose sensitive information." } ] }, diff --git a/2023/38xxx/CVE-2023-38136.json b/2023/38xxx/CVE-2023-38136.json index 43ee78beb1a..fba6efc764c 100644 --- a/2023/38xxx/CVE-2023-38136.json +++ b/2023/38xxx/CVE-2023-38136.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, watchOS 9.6. Processing web content may disclose sensitive information." + "value": "The issue was addressed with improved memory handling. This issue is fixed in iOS 16.6 and iPadOS 16.6, watchOS 9.6. An app may be able to execute arbitrary code with kernel privileges." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing web content may disclose sensitive information" + "value": "An app may be able to execute arbitrary code with kernel privileges" } ] } diff --git a/2023/38xxx/CVE-2023-38258.json b/2023/38xxx/CVE-2023-38258.json index 7ea7c6864d5..3d8e2495394 100644 --- a/2023/38xxx/CVE-2023-38258.json +++ b/2023/38xxx/CVE-2023-38258.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.5, macOS Monterey 12.6.8. Processing a file may lead to a denial-of-service or potentially disclose memory contents." + "value": "The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.5, macOS Monterey 12.6.8. Processing a 3D model may result in disclosure of process memory." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing a file may lead to a denial-of-service or potentially disclose memory contents" + "value": "Processing a 3D model may result in disclosure of process memory" } ] } diff --git a/2023/38xxx/CVE-2023-38259.json b/2023/38xxx/CVE-2023-38259.json index ca0ecaefb17..a5259ed7d49 100644 --- a/2023/38xxx/CVE-2023-38259.json +++ b/2023/38xxx/CVE-2023-38259.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.5, macOS Monterey 12.6.8, macOS Big Sur 11.7.9. Processing a file may lead to a denial-of-service or potentially disclose memory contents." + "value": "A logic issue was addressed with improved restrictions. This issue is fixed in macOS Monterey 12.6.8, macOS Ventura 13.5, macOS Big Sur 11.7.9. An app may be able to access user-sensitive data." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing a file may lead to a denial-of-service or potentially disclose memory contents" + "value": "An app may be able to access user-sensitive data" } ] } diff --git a/2023/38xxx/CVE-2023-38410.json b/2023/38xxx/CVE-2023-38410.json index 52d78ca022b..4517bf77f5c 100644 --- a/2023/38xxx/CVE-2023-38410.json +++ b/2023/38xxx/CVE-2023-38410.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.5, iOS 16.6 and iPadOS 16.6. Processing web content may disclose sensitive information." + "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. A user may be able to elevate privileges." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing web content may disclose sensitive information" + "value": "A user may be able to elevate privileges" } ] } diff --git a/2023/38xxx/CVE-2023-38421.json b/2023/38xxx/CVE-2023-38421.json index 5af55fbe3a6..aace9b02448 100644 --- a/2023/38xxx/CVE-2023-38421.json +++ b/2023/38xxx/CVE-2023-38421.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.5, macOS Monterey 12.6.8. Processing a file may lead to a denial-of-service or potentially disclose memory contents." + "value": "The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.5, macOS Monterey 12.6.8. Processing a 3D model may result in disclosure of process memory." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing a file may lead to a denial-of-service or potentially disclose memory contents" + "value": "Processing a 3D model may result in disclosure of process memory" } ] } diff --git a/2023/38xxx/CVE-2023-38424.json b/2023/38xxx/CVE-2023-38424.json index 25aacd0121f..a6493168883 100644 --- a/2023/38xxx/CVE-2023-38424.json +++ b/2023/38xxx/CVE-2023-38424.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.5, iOS 16.6 and iPadOS 16.6. Processing web content may disclose sensitive information." + "value": "The issue was addressed with improved memory handling. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. An app may be able to execute arbitrary code with kernel privileges." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing web content may disclose sensitive information" + "value": "An app may be able to execute arbitrary code with kernel privileges" } ] } diff --git a/2023/38xxx/CVE-2023-38425.json b/2023/38xxx/CVE-2023-38425.json index ad22a8bb418..f9f7ec3479c 100644 --- a/2023/38xxx/CVE-2023-38425.json +++ b/2023/38xxx/CVE-2023-38425.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.5, iOS 16.6 and iPadOS 16.6. Processing web content may disclose sensitive information." + "value": "The issue was addressed with improved memory handling. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. An app may be able to execute arbitrary code with kernel privileges." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing web content may disclose sensitive information" + "value": "An app may be able to execute arbitrary code with kernel privileges" } ] } diff --git a/2023/38xxx/CVE-2023-38565.json b/2023/38xxx/CVE-2023-38565.json index a4fa28e7368..96974bab14a 100644 --- a/2023/38xxx/CVE-2023-38565.json +++ b/2023/38xxx/CVE-2023-38565.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Monterey 12.6.8, watchOS 9.6, macOS Big Sur 11.7.9, macOS Ventura 13.5. Processing web content may disclose sensitive information." + "value": "A path handling issue was addressed with improved validation. This issue is fixed in macOS Monterey 12.6.8, iOS 16.6 and iPadOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to gain root privileges." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing web content may disclose sensitive information" + "value": "An app may be able to gain root privileges" } ] } diff --git a/2023/38xxx/CVE-2023-38572.json b/2023/38xxx/CVE-2023-38572.json index 9b87ccf6f0a..211e246fd45 100644 --- a/2023/38xxx/CVE-2023-38572.json +++ b/2023/38xxx/CVE-2023-38572.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, tvOS 16.6, watchOS 9.6, macOS Ventura 13.5, iOS 15.7.8 and iPadOS 15.7.8, Safari 16.6. A website may be able to bypass Same Origin Policy." + "value": "The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. A website may be able to bypass Same Origin Policy." } ] }, diff --git a/2023/38xxx/CVE-2023-38593.json b/2023/38xxx/CVE-2023-38593.json index 6346ffe511d..bc0f0a6b413 100644 --- a/2023/38xxx/CVE-2023-38593.json +++ b/2023/38xxx/CVE-2023-38593.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, macOS Monterey 12.6.8, watchOS 9.6, macOS Big Sur 11.7.9, macOS Ventura 13.5. Processing web content may disclose sensitive information." + "value": "A logic issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.8, iOS 16.6 and iPadOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to cause a denial-of-service." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing web content may disclose sensitive information" + "value": "An app may be able to cause a denial-of-service" } ] } diff --git a/2023/38xxx/CVE-2023-38594.json b/2023/38xxx/CVE-2023-38594.json index c58a34601de..15b27108e7d 100644 --- a/2023/38xxx/CVE-2023-38594.json +++ b/2023/38xxx/CVE-2023-38594.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, iOS 15.7.8 and iPadOS 15.7.8, tvOS 16.6, watchOS 9.6, Safari 16.6, macOS Ventura 13.5. Processing web content may disclose sensitive information." + "value": "The issue was addressed with improved checks. This issue is fixed in iOS 15.7.8 and iPadOS 15.7.8, iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may lead to arbitrary code execution." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing web content may disclose sensitive information" + "value": "Processing web content may lead to arbitrary code execution" } ] } diff --git a/2023/38xxx/CVE-2023-38595.json b/2023/38xxx/CVE-2023-38595.json index c1e1bb3d005..e864412c521 100644 --- a/2023/38xxx/CVE-2023-38595.json +++ b/2023/38xxx/CVE-2023-38595.json @@ -11,7 +11,7 @@ "description_data": [ { "lang": "eng", - "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, tvOS 16.6, watchOS 9.6, Safari 16.6, macOS Ventura 13.5. Processing web content may disclose sensitive information." + "value": "The issue was addressed with improved checks. This issue is fixed in iOS 16.6 and iPadOS 16.6, tvOS 16.6, macOS Ventura 13.5, Safari 16.6, watchOS 9.6. Processing web content may lead to arbitrary code execution." } ] }, @@ -21,7 +21,7 @@ "description": [ { "lang": "eng", - "value": "Processing web content may disclose sensitive information" + "value": "Processing web content may lead to arbitrary code execution" } ] }