Vulnerabilities > Apple > Iphone OS > 12.4.4

DATE CVE VULNERABILITY TITLE RISK
2023-12-08 CVE-2023-45866 Improper Authentication vulnerability in multiple products
Bluetooth HID Hosts in BlueZ may permit an unauthenticated Peripheral role HID Device to initiate and establish an encrypted connection, and accept HID keyboard reports, potentially permitting injection of HID messages when no user interaction has occurred in the Central role to authorize such access.
6.3
2023-11-30 CVE-2023-42916 Out-of-bounds Read vulnerability in multiple products
An out-of-bounds read was addressed with improved input validation.
network
low complexity
apple fedoraproject debian webkitgtk CWE-125
6.5
2023-11-30 CVE-2023-42917 Out-of-bounds Write vulnerability in multiple products
A memory corruption vulnerability was addressed with improved locking.
network
low complexity
apple debian fedoraproject webkitgtk CWE-787
8.8
2023-10-25 CVE-2023-32359 Unspecified vulnerability in Apple Ipados
This issue was addressed with improved redaction of sensitive information.
network
low complexity
apple
7.5
2023-10-25 CVE-2023-40408 Unspecified vulnerability in Apple products
An inconsistent user interface issue was addressed with improved state management.
network
low complexity
apple
5.3
2023-10-25 CVE-2023-40413 Unspecified vulnerability in Apple products
The issue was addressed with improved handling of caches.
local
low complexity
apple
5.5
2023-10-25 CVE-2023-40416 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Ipados, Iphone OS and Macos
The issue was addressed with improved memory handling.
network
low complexity
apple CWE-119
6.5
2023-10-25 CVE-2023-40423 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Ipados, Iphone OS and Macos
The issue was addressed with improved memory handling.
local
low complexity
apple CWE-119
7.8
2023-10-25 CVE-2023-40447 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
The issue was addressed with improved memory handling.
network
low complexity
apple CWE-119
8.8
2023-10-25 CVE-2023-40449 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Ipados, Iphone OS and Macos
The issue was addressed with improved memory handling.
local
low complexity
apple CWE-119
5.5