Apple Products Multiple Vulnerabilities
RISK: Extremely High Risk
TYPE: Operating Systems - Mobile & Apps
Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, data manipulation, spoofing, remote code execution, sensitive information disclosure and security restriction bypass on the targeted system.
Note:
CVE-2023-23529 (WebKit Bugzilla: 251944) is being exploited in the wild. The vulnerability is related to the WebKit component when processing maliciously crafted web content that may lead to arbitrary code execution.
Impact
- Spoofing
- Elevation of Privilege
- Data Manipulation
- Security Restriction Bypass
- Information Disclosure
- Remote Code Execution
- Denial of Service
System / Technologies affected
- Versions prior to Safari 16.4
- Versions prior to Studio Display Firmware Update 16.4
- Versions prior to iOS 15.7.4 and iPadOS 15.7.4
- Versions prior to iOS 16.4 and iPadOS 16.4
- Versions prior to macOS Big Sur 11.7.5
- Versions prior to macOS Monterey 12.6.4
- Versions prior to macOS Ventura 13.3
- Versions prior to tvOS 16.4
- Versions prior to watchOS 9.4
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- Safari 16.4
- Studio Display Firmware Update 16.4
- iOS 15.7.4 and iPadOS 15.7.4
- iOS 16.4 and iPadOS 16.4
- macOS Big Sur 11.7.5
- macOS Monterey 12.6.4
- macOS Ventura 13.3
- tvOS 16.4
- watchOS 9.4
Vulnerability Identifier
- CVE-2022-26702
- CVE-2022-43551
- CVE-2022-43552
- CVE-2023-0049
- CVE-2023-0051
- CVE-2023-0054
- CVE-2023-0288
- CVE-2023-0433
- CVE-2023-0512
- CVE-2023-23494
- CVE-2023-23514
- CVE-2023-23523
- CVE-2023-23525
- CVE-2023-23526
- CVE-2023-23527
- CVE-2023-23528
- CVE-2023-23529
- CVE-2023-23532
- CVE-2023-23533
- CVE-2023-23534
- CVE-2023-23535
- CVE-2023-23537
- CVE-2023-23538
- CVE-2023-23540
- CVE-2023-23541
- CVE-2023-23542
- CVE-2023-23543
- CVE-2023-27928
- CVE-2023-27929
- CVE-2023-27931
- CVE-2023-27932
- CVE-2023-27933
- CVE-2023-27934
- CVE-2023-27935
- CVE-2023-27936
- CVE-2023-27937
- CVE-2023-27941
- CVE-2023-27942
- CVE-2023-27943
- CVE-2023-27944
- CVE-2023-27946
- CVE-2023-27949
- CVE-2023-27951
- CVE-2023-27952
- CVE-2023-27953
- CVE-2023-27954
- CVE-2023-27955
- CVE-2023-27956
- CVE-2023-27957
- CVE-2023-27958
- CVE-2023-27959
- CVE-2023-27961
- CVE-2023-27962
- CVE-2023-27963
- CVE-2023-27965
- CVE-2023-27968
- CVE-2023-27969
- CVE-2023-27970
- CVE-2023-28178
- CVE-2023-28180
- CVE-2023-28181
- CVE-2023-28182
- CVE-2023-28190
- CVE-2023-28192
- CVE-2023-28194
- CVE-2023-28200
Source
Related Link
- https://support.apple.com/en-us/HT213670
- https://support.apple.com/en-us/HT213671
- https://support.apple.com/en-us/HT213672
- https://support.apple.com/en-us/HT213673
- https://support.apple.com/en-us/HT213674
- https://support.apple.com/en-us/HT213675
- https://support.apple.com/en-us/HT213676
- https://support.apple.com/en-us/HT213677
- https://support.apple.com/en-us/HT213678
Related Tags
Share with