![]() ![]() ![]() Open the Watch app General Software Update to download and install watchos 10. Tap on General Storage Software Update and delete the downloaded update file. Impact: Processing maliciously crafted web content may lead to arbitrary code executionĭescription: The issue was addressed with improved checks. Open the Watch app on the paired iPhone and ensure you are in the My Watch tab. Impact: An HTML document may be able to render iframes with sensitive user informationĭescription: This issue was addressed with improved iframe sandbox enforcement.ĬVE-2022-0108: Luan Herrera added June 6, 2023 Impact: Processing web content may lead to arbitrary code executionĬVE-2023-32393: Francisco Alonso added June 28, 2023 Impact: An app may be able to access information about a user’s contactsĭescription: A privacy issue was addressed with improved private data redaction for log entries.ĬVE-2023-23505: Wojciech Reguła of SecuRing (wojciechregula.blog), and Csaba Fitzl of Offensive SecurityĬVE-2023-23511: Wojciech Regula of SecuRing (wojciechregula.blog), an anonymous researcher Impact: Visiting a website may lead to an app denial-of-service Impact: An app may be able to execute arbitrary code with kernel privilegesĭescription: A logic issue was addressed with improved state management. Impact: An app may be able to determine kernel memory layoutĭescription: An information disclosure issue was addressed by removing the vulnerable code.ĬVE-2023-23502: Pan ZhenPeng of STAR Labs SG Pte. Impact: An app may be able to leak sensitive kernel stateĭescription: The issue was addressed with improved memory handling.ĬVE-2023-23500: Pan ZhenPeng of STAR Labs SG Pte. Impact: Processing an image may lead to a denial-of-serviceĭescription: A memory corruption issue was addressed with improved state management.ĬVE-2023-23519: Meysam Firouzi of Mbition Mercedes-Benz Innovation Lab, Yiğit Can YILMAZ and jzhu working with Trend Micro Zero Day Initiative Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7.1.ĭescription: The issue was addressed with improved handling of caches. Impact: Processing a font file may lead to arbitrary code execution. Impact: A user may be able to read arbitrary files as rootĭescription: A race condition was addressed with additional validation. Impact: An app may be able to access user-sensitive dataĭescription: This issue was addressed by enabling hardened runtime.ĬVE-2023-23499: Wojciech Regula of SecuRing (wojciechregula.blog) Impact: An app may be able to bypass Privacy preferencesĭescription: This issue was addressed with improved checks to prevent unauthorized actions.ĬVE-2023-32438: Csaba Fitzl of Offensive Security and Mickey Jin added September 5, 2023 Available for: Apple Watch Series 4 and later
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |