Published: 08/05/2023 Updated: 17/11/2023

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 0

A validation issue was addressed with improved input sanitization. This issue is fixed in macOS Ventura 13.3, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. An app may be able to disclose kernel memory.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple macos
apple iphone os
apple ipados
apple macos 13.4

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available Recent releases are listed on the Apple security updates page Apple security documents reference vulnerabilities by CVE-ID&nbsp ...

A collection of CodeQL queries, currently for DTrace XNU module

Vendor CVE Module Vulnerability Apple CVE-2023-27941 DTrace Out-of-bounds Read Apple CVE-2023-28200 DTrace Out-of-bounds Read

CWE-20 https://support.apple.com/en-us/HT213675 https://support.apple.com/en-us/HT213673 https://support.apple.com/en-us/HT213670 https://support.apple.com/en-us/HT213677 https://support.apple.com/kb/HT213843 https://nvd.nist.gov https://github.com/0x3c3e/codeql-queries https://support.apple.com/kb/HT213670

CVE-2023-28200

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect