- 77/2023
- High
Apple has released security updates to address multiple vulnerabilities in the updated version of macOS Big Sur 11.7.5, macOS Monterey 12.6.4, macOS Ventura 13.3, and Safari 16.4.
The addressed vulnerabilities could allow the attacker to gain privileges, bypass security restrictions, obtain information, or execute arbitrary code on the affected system.
Sample of the addressed vulnerabilities:
- Apple macOS Ventura Buffer Overflow (CVE-2023-27968):
- CVSS: 8.4
- Attack Vector: Local
- Attack Complexity: Low
- Privileges Required: None
- User Interaction: None
- Consequences: Gain Access
- Apple macOS Ventura, iOS, and iPadOS Security Bypass (CVE-2023-23532):
- CVSS: 7.1
- Attack Vector: Local
- Attack Complexity: Low
- Privileges Required: Low
- User Interaction: None
- Consequences: Bypass Security
Vulnerabilities
Mitigations
The enterprise should deploy this patch as soon as the testing phase is completed.
Apple Security Advisory