Vulnerabilities > Apple > Macos > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-12-08 CVE-2023-45866 Improper Authentication vulnerability in multiple products
Bluetooth HID Hosts in BlueZ may permit an unauthenticated Peripheral role HID Device to initiate and establish an encrypted connection, and accept HID keyboard reports, potentially permitting injection of HID messages when no user interaction has occurred in the Central role to authorize such access. 		6.3
6.3
2023-11-30 CVE-2023-42916 Out-of-bounds Read vulnerability in multiple products
An out-of-bounds read was addressed with improved input validation.
network
low complexity
apple fedoraproject debian webkitgtk CWE-125
6.5
6.5
2023-10-25 CVE-2023-40408 Unspecified vulnerability in Apple products
An inconsistent user interface issue was addressed with improved state management.
network
low complexity
apple
5.3
5.3
2023-10-25 CVE-2023-40413 Unspecified vulnerability in Apple products
The issue was addressed with improved handling of caches.
local
low complexity
apple
5.5
5.5
2023-10-25 CVE-2023-40416 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Ipados, Iphone OS and Macos
The issue was addressed with improved memory handling.
network
low complexity
apple CWE-119
6.5
6.5
2023-10-25 CVE-2023-40421 Unspecified vulnerability in Apple Macos
A permissions issue was addressed with additional restrictions.
local
low complexity
apple
5.5
5.5
2023-10-25 CVE-2023-40425 Information Exposure Through Log Files vulnerability in Apple Macos
A privacy issue was addressed with improved private data redaction for log entries.
local
low complexity
apple CWE-532
4.4
4.4
2023-10-25 CVE-2023-40444 Unspecified vulnerability in Apple Macos 14.0
A permissions issue was addressed with additional restrictions.
local
low complexity
apple
5.5
5.5
2023-10-25 CVE-2023-40449 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple Ipados, Iphone OS and Macos
The issue was addressed with improved memory handling.
local
low complexity
apple CWE-119
5.5
5.5
2023-10-25 CVE-2023-41072 Unspecified vulnerability in Apple Ipados, Iphone OS and Macos
A privacy issue was addressed with improved private data redaction for log entries.
local
low complexity
apple
5.5
5.5