CVE List - 2023 / September
Showing 1701 - 1800 of 2148 CVEs for September 2023 (Page 18 of 22)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2023-36851 | 2023-09-26 | Junos OS: SRX Series: A vulnerability in J-Web allows an unauthenticated attacker to upload and download arbitrary files |
| CVE-2023-40417 | 2023-09-26 | A window management issue was addressed with improved state management. This issue is fixed in Safari 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. Visiting a website... |
| CVE-2023-41986 | 2023-09-26 | The issue was addressed with improved checks. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to modify protected parts of... |
| CVE-2023-40456 | 2023-09-26 | The issue was addressed with improved checks. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10. An app may be able to access edited photos... |
| CVE-2023-32421 | 2023-09-26 | A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sonoma 14. An app may be able to observe unprotected user data. |
| CVE-2023-41066 | 2023-09-26 | An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14. An app may be able to unexpectedly leak a user's credentials from secure... |
| CVE-2023-41174 | 2023-09-26 | The issue was addressed with improved memory handling. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10. An app may be able to execute arbitrary... |
| CVE-2023-41070 | 2023-09-26 | A logic issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.6, iOS 16.7 and iPadOS 16.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma... |
| CVE-2023-41071 | 2023-09-26 | A use-after-free issue was addressed with improved memory management. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Ventura 13.6. An app may be... |
| CVE-2023-41067 | 2023-09-26 | A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14. An app may bypass Gatekeeper checks. |
| CVE-2023-35074 | 2023-09-26 | The issue was addressed with improved memory handling. This issue is fixed in tvOS 17, Safari 17, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. Processing web content... |
| CVE-2023-40436 | 2023-09-26 | The issue was addressed with improved bounds checks. This issue is fixed in macOS Sonoma 14. An attacker may be able to cause unexpected system termination or read kernel memory. |
| CVE-2023-40420 | 2023-09-26 | The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, iOS 16.7 and iPadOS 16.7, macOS Monterey 12.7, watchOS 10, iOS 17... |
| CVE-2023-38596 | 2023-09-26 | The issue was addressed with improved handling of protocols. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may fail... |
| CVE-2023-40400 | 2023-09-26 | This issue was addressed with improved checks. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. A remote user may cause an... |
| CVE-2023-40441 | 2023-09-26 | A resource exhaustion issue was addressed with improved input validation. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. Processing web content may lead to a... |
| CVE-2023-23495 | 2023-09-26 | A permissions issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Sonoma 14. An app may be able to access sensitive user data. |
| CVE-2023-41968 | 2023-09-26 | This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS... |
| CVE-2023-32396 | 2023-09-26 | This issue was addressed with improved checks. This issue is fixed in Xcode 15, tvOS 17, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be... |
| CVE-2023-40427 | 2023-09-26 | The issue was addressed with improved handling of caches. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS... |
| CVE-2023-40431 | 2023-09-26 | The issue was addressed with improved memory handling. This issue is fixed in iOS 17 and iPadOS 17. An app may be able to execute arbitrary code with kernel privileges. |
| CVE-2023-41980 | 2023-09-26 | A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to bypass Privacy preferences. |
| CVE-2023-40450 | 2023-09-26 | The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14. An app may bypass Gatekeeper checks. |
| CVE-2023-40407 | 2023-09-26 | The issue was addressed with improved bounds checks. This issue is fixed in macOS Sonoma 14. A remote attacker may be able to cause a denial-of-service. |
| CVE-2023-41996 | 2023-09-26 | The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.6. Apps that fail verification checks may still launch. |
| CVE-2023-41979 | 2023-09-26 | A race condition was addressed with improved locking. This issue is fixed in macOS Sonoma 14. An app may be able to modify protected parts of the file system. |
| CVE-2023-40391 | 2023-09-26 | The issue was addressed with improved memory handling. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, macOS Sonoma 14, Xcode 15. An app may be able... |
| CVE-2023-40406 | 2023-09-26 | The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.7, macOS Ventura 13.6, macOS Sonoma 14. An app may be able to read arbitrary files. |
| CVE-2023-40451 | 2023-09-26 | This issue was addressed with improved iframe sandbox enforcement. This issue is fixed in Safari 17. An attacker with JavaScript execution may be able to execute arbitrary code. |
| CVE-2023-41981 | 2023-09-26 | The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, iOS 16.7 and iPadOS 16.7, watchOS 10, iOS 17 and iPadOS 17,... |
| CVE-2023-40386 | 2023-09-26 | A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sonoma 14. An app may be able to access Notes attachments. |
| CVE-2023-40410 | 2023-09-26 | An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS... |
| CVE-2023-35984 | 2023-09-26 | The issue was addressed with improved checks. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An attacker in physical proximity can... |
| CVE-2023-38586 | 2023-09-26 | An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sonoma 14. A sandboxed process may be able to circumvent sandbox restrictions. |
| CVE-2023-37448 | 2023-09-26 | A lock screen issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14. A user may be able to view restricted content from the lock... |
| CVE-2023-40426 | 2023-09-26 | A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14. An app may be able to bypass certain Privacy preferences. |
| CVE-2023-40409 | 2023-09-26 | The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17. An app... |
| CVE-2023-41074 | 2023-09-26 | The issue was addressed with improved checks. This issue is fixed in tvOS 17, Safari 17, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. Processing web content may... |
| CVE-2023-40448 | 2023-09-26 | The issue was addressed with improved handling of protocols. This issue is fixed in tvOS 17, iOS 16.7 and iPadOS 16.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma... |
| CVE-2023-41078 | 2023-09-26 | An authorization issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14. An app may be able to bypass certain Privacy preferences. |
| CVE-2023-40452 | 2023-09-26 | The issue was addressed with improved bounds checks. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma... |
| CVE-2023-39434 | 2023-09-26 | A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. Processing web content may lead to... |
| CVE-2023-40429 | 2023-09-26 | A permissions issue was addressed with improved validation. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may be able... |
| CVE-2023-40428 | 2023-09-26 | The issue was addressed with improved handling of caches. This issue is fixed in iOS 17 and iPadOS 17. An app may be able to access sensitive user data. |
| CVE-2023-35990 | 2023-09-26 | The issue was addressed with improved checks. This issue is fixed in iOS 17 and iPadOS 17, watchOS 10, iOS 16.7 and iPadOS 16.7, macOS Sonoma 14. An app may... |
| CVE-2023-39233 | 2023-09-26 | The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14. Processing web content may disclose sensitive information. |
| CVE-2023-40412 | 2023-09-26 | The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17. An app... |
| CVE-2023-40384 | 2023-09-26 | A permissions issue was addressed with improved redaction of sensitive information. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be... |
| CVE-2023-40541 | 2023-09-26 | This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Sonoma 14. A shortcut may output sensitive user data without consent. |
| CVE-2023-41079 | 2023-09-26 | The issue was addressed with improved permissions logic. This issue is fixed in macOS Sonoma 14. An app may be able to bypass Privacy preferences. |
| CVE-2023-41995 | 2023-09-26 | A use-after-free issue was addressed with improved memory management. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to execute arbitrary... |
| CVE-2023-40424 | 2023-09-26 | The issue was addressed with improved checks. This issue is fixed in iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may be able to access user-sensitive... |
| CVE-2023-38615 | 2023-09-26 | The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14. An app may be able to execute arbitrary code with kernel privileges. |
| CVE-2023-40432 | 2023-09-26 | The issue was addressed with improved memory handling. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may be able... |
| CVE-2023-40520 | 2023-09-26 | The issue was addressed with improved checks. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10. An app may be able to access edited photos... |
| CVE-2023-40388 | 2023-09-26 | A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sonoma 14. Safari may save photos to an unprotected location. |
| CVE-2023-41063 | 2023-09-26 | The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, iOS 16.7 and iPadOS 16.7, iOS 17 and iPadOS 17, macOS Sonoma... |
| CVE-2023-29497 | 2023-09-26 | A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sonoma 14. An app may be able to access calendar data saved to... |
| CVE-2023-40395 | 2023-09-26 | The issue was addressed with improved handling of caches. This issue is fixed in tvOS 17, iOS 16.7 and iPadOS 16.7, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS... |
| CVE-2023-40403 | 2023-09-26 | The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, iOS 16.7 and iPadOS 16.7, macOS Monterey 12.7, watchOS 10, iOS 17... |
| CVE-2023-40454 | 2023-09-26 | A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.6, tvOS 17, iOS 16.7 and iPadOS 16.7, macOS Monterey 12.7, watchOS 10, iOS 17... |
| CVE-2023-41068 | 2023-09-26 | An access issue was addressed with improved access restrictions. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, iOS 16.7 and iPadOS 16.7. A user... |
| CVE-2023-41984 | 2023-09-26 | The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, iOS 16.7 and iPadOS 16.7, macOS Monterey 12.7, watchOS 10, iOS 17... |
| CVE-2023-40399 | 2023-09-26 | The issue was addressed with improved memory handling. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may be able... |
| CVE-2023-40419 | 2023-09-26 | The issue was addressed with improved checks. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10. An app may be able to gain elevated privileges. |
| CVE-2023-40435 | 2023-09-26 | This issue was addressed by enabling hardened runtime. This issue is fixed in Xcode 15. An app may be able to access App Store credentials. |
| CVE-2023-41232 | 2023-09-26 | An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Monterey 12.7, iOS 17 and iPadOS 17, macOS Ventura 13.6, iOS 16.7 and iPadOS 16.7.... |
| CVE-2023-40422 | 2023-09-26 | The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14. An app may be able to cause a denial-of-service. |
| CVE-2023-40434 | 2023-09-26 | A configuration issue was addressed with additional restrictions. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to access a user's... |
| CVE-2023-41065 | 2023-09-26 | A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14.... |
| CVE-2023-40418 | 2023-09-26 | An authentication issue was addressed with improved state management. This issue is fixed in watchOS 10. An Apple Watch Ultra may not lock when using the Depth app. |
| CVE-2023-32377 | 2023-09-26 | A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14. An app may be able to execute arbitrary code with kernel privileges. |
| CVE-2023-41073 | 2023-09-26 | An authorization issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.6, tvOS 17, iOS 16.7 and iPadOS 16.7, macOS Monterey 12.7, watchOS 10, iOS... |
| CVE-2023-32361 | 2023-09-26 | The issue was addressed with improved handling of caches. This issue is fixed in tvOS 17, iOS 17 and iPadOS 17, watchOS 10, macOS Sonoma 14. An app may be... |
| CVE-2023-40443 | 2023-09-26 | The issue was addressed with improved checks. This issue is fixed in iOS 17 and iPadOS 17. An app may be able to gain root privileges. |
| CVE-2023-40455 | 2023-09-26 | A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14. A sandboxed process may be able to circumvent sandbox restrictions. |
| CVE-2023-40402 | 2023-09-26 | A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14. An app may be able to access sensitive user data. |
| CVE-2023-41333 | 2023-09-26 | Bypass of namespace restrictions in CiliumNetworkPolicy |
| CVE-2023-41332 | 2023-09-26 | Denial of service via Kubernetes annotations in specific Cilium configurations |
| CVE-2023-42820 | 2023-09-26 | Random seed leakage in Jumpserver |
| CVE-2023-42819 | 2023-09-26 | Path traversal in Jumpserver |
| CVE-2023-42453 | 2023-09-26 | Improper validation of receipts allows forged read receipts in matrix synapse |
| CVE-2023-41335 | 2023-09-26 | Temporary storage of plaintext passwords during password changes in matrix synapse |
| CVE-2023-43645 | 2023-09-26 | Denial of service from circular relationship definitions in OpenFGA |
| CVE-2023-41320 | 2023-09-26 | Account takeover via SQL Injection in UI layout preferences in GLPI |
| CVE-2023-41321 | 2023-09-26 | Sensitive fields enumeration through API in GLPI |
| CVE-2023-5183 | 2023-09-26 | Authenticated RCE due to unsafe JSON deserialization |
| CVE-2023-2358 | 2023-09-26 | Hitachi Vantara Pentaho Business Analytics Server – Password Stored in a Recoverable Format |
| CVE-2023-23958 | 2023-09-26 | Symantec Protection Engine Hash Leak Vulnerability |
| CVE-2023-41322 | 2023-09-26 | Privilege Escalation from technician to super-admin in GLPI |
| CVE-2023-41323 | 2023-09-26 | Users login enumeration by unauthenticated user in GLPI |
| CVE-2023-41324 | 2023-09-26 | Account takeover through API in GLPI |
| CVE-2023-41326 | 2023-09-26 | Account takeover via Kanban feature in GLPI |
| CVE-2023-41888 | 2023-09-26 | Phishing through a login page malicious URL in GLPI |
| CVE-2023-42461 | 2023-09-26 | SQL injection in ITIL actors in GLPI |
| CVE-2023-42462 | 2023-09-26 | File deletion through document upload process in GLPI |
| CVE-2023-41878 | 2023-09-26 | Weak password of selenium VNC in MeterSphere |
| CVE-2023-41445 | 2023-09-27 | Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the index.php component. |
| CVE-2023-41448 | 2023-09-27 | Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the ID parameter in the index.php component. |
| CVE-2023-41449 | 2023-09-27 | An issue in phpkobo AjaxNewsTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the reque parameter. |