cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-42836,https://securityvulnerability.io/vulnerability/CVE-2023-42836,iOS 17.1 and Later Fix Logic Issue to Improve Network Volume Security,"A logic issue has been identified in Apple's operating systems that may enable malicious actors to gain unauthorized access to connected network volumes mounted in a user's home directory. This vulnerability affects multiple versions of iOS, iPadOS, and macOS, highlighting the potential risk to data integrity and user privacy. Users should ensure their devices are updated to the latest versions to mitigate the risk associated with this issue and safeguard their information from potential exploitation.",Apple,"macOS,iOS and iPadOS",5.3,MEDIUM,0.0006000000284984708,false,,false,false,false,,,false,false,,2024-02-21T06:41:04.266Z,0
CVE-2023-42887,https://securityvulnerability.io/vulnerability/CVE-2023-42887,Access Vulnerability in macOS by Apple,"An access control vulnerability was identified in macOS that could allow applications to bypass sandbox restrictions, potentially enabling them to read arbitrary files. This security flaw underscores the importance of updated software protections to mitigate unauthorized file access. Apple has addressed this issue in recent updates, specifically macOS Ventura 13.6.4 and macOS Sonoma 14.2, enhancing sandboxing measures to safeguard user data against exploitation.",Apple,macOS,6.3,MEDIUM,0.0005300000193528831,false,,false,false,false,,,false,false,,2024-01-23T00:25:38.040Z,0
CVE-2023-42937,https://securityvulnerability.io/vulnerability/CVE-2023-42937,Privacy Vulnerability in Apple Products Affecting User Data Security,"A privacy issue has been identified in Apple products that could allow unauthorized access to sensitive user data through poorly redacted log entries. This vulnerability has been mitigated in several updated versions, including iOS 16.7.5, iPadOS 16.7.5, watchOS 10.2, and multiple macOS updates. Users are advised to update their devices to the latest software versions to ensure improved data protection and privacy safeguards.",Apple,"iOS and iPadOS,macOS,watchOS",5.5,MEDIUM,0.0006099999882280827,false,,false,false,false,,,false,false,,2024-01-23T00:25:36.060Z,0
CVE-2024-23215,https://securityvulnerability.io/vulnerability/CVE-2024-23215,Security Flaw in Apple Operating Systems Allowing Unauthorized Data Access,"This vulnerability involves a flaw in the handling of temporary files that may allow applications on affected Apple operating systems to access sensitive user data without proper authorization. Users of macOS, watchOS, tvOS, iOS, and iPadOS should ensure they are running the latest versions to mitigate potential exposure to unauthorized data access.",Apple,"iOS and iPadOS,tvOS,watchOS,macOS",5.5,MEDIUM,0.0006000000284984708,false,,false,false,false,,,false,false,,2024-01-23T00:25:33.950Z,0
CVE-2024-23223,https://securityvulnerability.io/vulnerability/CVE-2024-23223,Privacy Issue in Apple Products - Vulnerability in User Data Handling,"A privacy vulnerability has been identified in various Apple operating systems, which could potentially allow unauthorized access to sensitive user data. This issue arises from improper handling of files, posing significant risks to user privacy. Apple has addressed this vulnerability in updates for macOS Sonoma 14.3, watchOS 10.3, tvOS 17.3, iOS 17.3, and iPadOS 17.3, enhancing the security measures that protect user information.",Apple,"iOS and iPadOS,tvOS,watchOS,macOS",6.2,MEDIUM,0.0006000000284984708,false,,false,false,false,,,false,false,,2024-01-23T00:25:32.185Z,0
CVE-2024-23212,https://securityvulnerability.io/vulnerability/CVE-2024-23212,Memory Handling Vulnerability in Apple Operating Systems,"A memory handling vulnerability exists in Apple's operating systems, potentially allowing an application to execute arbitrary code with elevated privileges. This issue affects a range of products including watchOS, tvOS, iOS, iPadOS, and various macOS versions. Apple has addressed this vulnerability in the latest updates, reinforcing the importance of keeping systems up-to-date to mitigate risks associated with unauthorized code execution.",Apple,"macOS,iOS and iPadOS,tvOS,watchOS",7.8,HIGH,0.0006500000017695129,false,,false,false,false,,,false,false,,2024-01-23T00:25:29.242Z,0
CVE-2024-23208,https://securityvulnerability.io/vulnerability/CVE-2024-23208,Apple Addresses Memory Handling Vulnerability in macOS Sonoma 14.3,"A vulnerability exists in Apple’s handling of memory, potentially allowing an application to execute arbitrary code with elevated kernel privileges. This issue highlights significant concerns regarding system integrity and application security across several Apple platforms, including macOS, iOS, iPadOS, watchOS, and tvOS. Apple has released updates to address this flaw effectively, enhancing the overall security posture of affected devices. Users and organizations using these platforms are strongly advised to apply the latest security patches to mitigate risks associated with this issue.",Apple,"iOS and iPadOS,tvOS,watchOS,macOS",7.8,HIGH,0.0006500000017695129,false,,true,false,true,2024-02-05T04:25:36.000Z,,true,false,,2024-01-23T00:25:28.334Z,12378
CVE-2023-42881,https://securityvulnerability.io/vulnerability/CVE-2023-42881,Memory Handling Flaw in Apple macOS Leading to App Termination and Code Execution,"A memory handling flaw has been identified in Apple macOS that may allow processing of a specially crafted file to result in unexpected application termination or arbitrary code execution. This vulnerability has significant implications for system integrity and user data security. The issue has been addressed in macOS Sonoma 14.2, where improved memory handling measures have been implemented to mitigate potential risks.",Apple,macOS,7.8,HIGH,0.0005499999970197678,false,,false,false,false,,,false,false,,2024-01-23T00:25:27.278Z,0
CVE-2024-23224,https://securityvulnerability.io/vulnerability/CVE-2024-23224,Data Exposure Vulnerability in Apple macOS Products,"An issue exists in macOS that may allow an application to access sensitive user data due to insufficient checks in place. This vulnerability has been addressed in the latest security updates, specifically in macOS Sonoma 14.3 and macOS Ventura 13.6.4, enhancing the protection of user information against unauthorized access.",Apple,macOS,5.5,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2024-01-23T00:25:26.314Z,0
CVE-2024-23209,https://securityvulnerability.io/vulnerability/CVE-2024-23209,Memory Handling Vulnerability in macOS Products by Apple,"A vulnerability exists in Apple’s macOS Sonoma, specifically originating from inadequate memory handling during the processing of web content. This flaw could potentially lead to arbitrary code execution, enabling malicious actors to manipulate system resources or gain unauthorized access to critical system functions. The issue has been addressed with recent updates in macOS Sonoma 14.3, emphasizing the importance of keeping systems updated to mitigate risks associated with such vulnerabilities.",Apple,macOS,8.8,HIGH,0.002420000033453107,false,,false,false,false,,,false,false,,2024-01-23T00:25:25.374Z,0
CVE-2024-23210,https://securityvulnerability.io/vulnerability/CVE-2024-23210,Sensitive Information Exposure in Apple Products,"This vulnerability allows apps to potentially access sensitive user information, such as phone numbers, from system logs due to inadequate redaction. This can lead to privacy concerns where unauthorized applications gain insight into personal data. Apple has addressed this issue in the latest updates for all its operating systems including iOS, macOS, watchOS, tvOS, and iPadOS, highlighting the importance of regular updates to safeguard user privacy.",Apple,"iOS and iPadOS,tvOS,watchOS,macOS",3.3,LOW,0.0005300000193528831,false,,false,false,false,,,false,false,,2024-01-23T00:25:23.602Z,0
CVE-2024-23211,https://securityvulnerability.io/vulnerability/CVE-2024-23211,Privacy Vulnerability in Apple Products Impacting User Browsing Activity,"A privacy issue has been identified in several Apple products, where a user's private browsing activity could become visible in the Settings application. This weakness arises from inadequate handling of user preferences, potentially exposing sensitive information. Apple has addressed this problem in recent updates, including watchOS 10.3, iOS 17.3, and Safari 17.3, ensuring enhanced privacy features to protect user data.",Apple,"iOS and iPadOS,Safari,watchOS,macOS",3.3,LOW,0.0005300000193528831,false,,false,false,false,,,false,false,,2024-01-23T00:25:20.675Z,0
CVE-2023-42935,https://securityvulnerability.io/vulnerability/CVE-2023-42935,Authentication Flaw in Apple macOS Ventura,"An authentication flaw has been identified in Apple's macOS Ventura, specifically affecting version 13.6.4. This vulnerability enables a local attacker to potentially access the desktop environment of the last user logged into the system through the fast user switching interface. This poses a significant privacy risk as it could allow unauthorized visibility of sensitive information from previous sessions, emphasizing the importance of maintaining secure session management and enhanced user privacy controls.",Apple,macOS,5.5,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2024-01-23T00:25:17.840Z,0
CVE-2023-40414,https://securityvulnerability.io/vulnerability/CVE-2023-40414,Use-After-Free Vulnerability in Apple Products,"A use-after-free vulnerability has been identified in key Apple products, which is linked to the handling of web content. Improper memory management may enable attackers to execute arbitrary code on affected systems. This issue impacts several platforms, including watchOS, iOS, iPadOS, tvOS, macOS, and Safari, emphasizing the necessity for users to update to the latest versions. Adequate memory handling is crucial to prevent exploitation via malicious web content and ensure the integrity of user systems.",Apple,"iOS and iPadOS,tvOS,Safari,macOS,watchOS",9.8,CRITICAL,0.0020699999295175076,false,,false,false,false,,,false,false,,2024-01-10T22:03:51.215Z,0
CVE-2023-40438,https://securityvulnerability.io/vulnerability/CVE-2023-40438,Temporary File Access Vulnerability in Apple iOS and macOS Products,"An issue has been identified in Apple’s handling of temporary files, which could potentially allow unauthorized applications to access edited photos stored in temporary directories. This vulnerability affects macOS Sonoma and specific versions of iOS and iPadOS. It highlights the importance of secure temporary file management in operating systems to prevent data leakage and ensure user privacy.",Apple,"iOS and iPadOS,macOS",5.5,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2024-01-10T22:03:50.347Z,0
CVE-2023-42872,https://securityvulnerability.io/vulnerability/CVE-2023-42872,Unauthorized Access Vulnerability in Apple’s macOS and iOS Products,"An issue affecting Apple’s operating systems allows unauthorized applications to potentially access sensitive user data. This vulnerability has been resolved with the introduction of additional permissions checks in macOS Sonoma 14, iOS 17, and iPadOS 17. Users are encouraged to update their devices to the latest versions to ensure their data remains protected, as adhering to updated security measures is crucial in safeguarding personal information.",Apple,"iOS and iPadOS,macOS",5.5,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2024-01-10T22:03:48.609Z,0
CVE-2023-42833,https://securityvulnerability.io/vulnerability/CVE-2023-42833,Correctness Issue in Apple Safari and iOS Platforms,"A correctness issue has been identified in Apple's Safari browser and iOS platforms, impacting the processing of web content. This vulnerability allows for an exploitation scenario where arbitrary code execution may occur, potentially compromising user security. To mitigate the risk, Apple has implemented improved checks in the latest versions of its operating systems including macOS Sonoma 14, Safari 17, iOS 17, and iPadOS 17. Users are strongly advised to update their devices to ensure they are protected against this security concern.",Apple,"iOS and iPadOS,Safari,macOS",8.8,HIGH,0.0025599999353289604,false,,false,false,false,,,false,false,,2024-01-10T22:03:47.742Z,0
CVE-2023-28185,https://securityvulnerability.io/vulnerability/CVE-2023-28185,Integer Overflow Vulnerability in Apple Products,"An integer overflow vulnerability was identified in several Apple operating systems, which can potentially allow applications to cause a denial-of-service condition. This issue was effectively mitigated through enhanced input validation measures across multiple product versions. It is crucial for users to update their systems to include the latest patches in order to safeguard against this potential threat.",Apple,"iOS and iPadOS,macOS,watchOS,tvOS",5.5,MEDIUM,0.0006600000197067857,false,,false,false,false,,,false,false,,2024-01-10T22:03:45.995Z,0
CVE-2023-38612,https://securityvulnerability.io/vulnerability/CVE-2023-38612,Unauthorized Access Vulnerability in Apple's Operating Systems,"A security vulnerability in Apple's operating systems allows unauthorized applications to access protected user data. This issue arises from insufficient checks and has been patched in several versions, including macOS Monterey, iOS, and iPadOS. Users are encouraged to update their devices to the latest versions to mitigate potential risks associated with this vulnerability.",Apple,"iOS and iPadOS,macOS",3.3,LOW,0.00046999999904073775,false,,false,false,false,,,false,false,,2024-01-10T22:03:45.130Z,0
CVE-2023-42832,https://securityvulnerability.io/vulnerability/CVE-2023-42832,Race Condition Vulnerability in Apple macOS,"A vulnerability has been identified in macOS that involves a race condition leading to improper state handling. This flaw could allow applications the ability to gain unauthorized root privileges, compromising system security. Versions affected include macOS Big Sur, Monterey, and Ventura, with respective updates addressing this issue being made available. Users and administrators are encouraged to apply the latest updates to mitigate the risk associated with this vulnerability.",Apple,macOS,7,HIGH,0.0005000000237487257,false,,false,false,false,,,false,false,,2024-01-10T22:03:44.211Z,0
CVE-2023-42865,https://securityvulnerability.io/vulnerability/CVE-2023-42865,Out-of-Bounds Read Vulnerability in Apple Products,"An out-of-bounds read vulnerability in various Apple operating systems has been identified. This issue arises when processing images, potentially leading to the disclosure of sensitive process memory. The vulnerability has been addressed by enhancing input validation, ensuring that the risk of unauthorized access to memory is mitigated. Users of affected systems are encouraged to update to the latest versions to safeguard against potential exploitation.",Apple,"macOS,iOS and iPadOS,watchOS,tvOS",6.5,MEDIUM,0.001500000013038516,false,,false,false,false,,,false,false,,2024-01-10T22:03:43.358Z,0
CVE-2023-42869,https://securityvulnerability.io/vulnerability/CVE-2023-42869,Memory Corruption Vulnerabilities in Apple libxml2,"Recent findings highlight multiple memory corruption issues within Apple's libxml2, a core library used for parsing XML data. These vulnerabilities stemmed from inadequate input validation, which could potentially allow attackers to execute arbitrary code. Users running macOS Ventura 13.4, iOS 16.5, and iPadOS 16.5 are particularly affected. Apple has released updates that address these weaknesses, significantly enhancing the security posture of its operating systems by enforcing stricter input validation protocols. It is crucial for users to update their systems to mitigate risks associated with these vulnerabilities.",Apple,"macOS,iOS and iPadOS",7.5,HIGH,0.0007800000021234155,false,,false,false,false,,,false,false,,2024-01-10T22:03:40.740Z,0
CVE-2023-32383,https://securityvulnerability.io/vulnerability/CVE-2023-32383,Code Injection Vulnerability in Apple Xcode Bundled Binaries,"A code injection vulnerability exists in sensitive binaries bundled with Xcode, which could allow malicious applications to execute unauthorized code. This vulnerability has been addressed with enhanced security measures, including the enforcement of hardened runtime across affected binaries. Users of macOS Monterey, Big Sur, and Ventura are advised to update to the latest versions to mitigate potential risks associated with this vulnerability.",Apple,macOS,7.8,HIGH,0.0005000000237487257,false,,false,false,false,,,false,false,,2024-01-10T22:03:39.853Z,0
CVE-2023-42828,https://securityvulnerability.io/vulnerability/CVE-2023-42828,Root Privileges Elevation Vulnerability in Apple macOS Ventura,"A security vulnerability in macOS Ventura allowed certain applications to potentially gain root privileges, posing a risk of unauthorized access and control over system resources. This issue was effectively resolved with the release of macOS Ventura 13.5, where the vulnerable code was removed. Users are encouraged to upgrade to ensure their systems are protected from possible exploitation.",Apple,macOS,7.8,HIGH,0.0005300000193528831,false,,false,false,false,,,false,false,,2024-01-10T22:03:38.971Z,0
CVE-2022-46710,https://securityvulnerability.io/vulnerability/CVE-2022-46710,Logic Issue in Apple’s iOS and macOS Products Concerning Location Data Sharing,"A logic issue in Apple's iOS, iPadOS, and macOS products allows location data to be unintentionally shared through iCloud links, even when users have disabled location metadata settings within the Share Sheet. This defect has been addressed with enhanced checks in the latest software updates, making it essential for users to upgrade to iOS 16.2, iPadOS 16.2, and macOS Ventura 13.1 to mitigate any exposure to this vulnerability.",Apple,"macOS,iOS and iPadOS",5.5,MEDIUM,0.0005200000014156103,false,,false,false,false,,,false,false,,2024-01-10T22:03:37.235Z,0