SB2023021340 - Multiple vulnerabilities in Apple macOS Ventura

Description

This security bulletin contains information about 4 secuirty vulnerabilities.

1) Use-after-free (CVE-ID: CVE-2023-23514)

The vulnerability allows a local application to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the OS kernel. A local application can trigger a use-after-free error and execute arbitrary code with kernel privileges.

2) Type Confusion (CVE-ID: CVE-2023-23529)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a type confusion error when parsing web content in WebKit. A remote attacker can trick the victim to visit a specially crafted website, trigger a type confusion error and execute arbitrary code on the target system.

Note, the vulnerability is being actively exploited in the wild.

3) Insecure Temporary File (CVE-ID: CVE-2023-23522)

The vulnerability allows a local application to gain access to sensitive information.

The vulnerability exists due to insecure handling of temporary files in Shortcuts. A local application can gain unauthorized access to unprotected user data.

4) Input validation error (CVE-ID: CVE-2023-23524)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input when processing certificates in Apple TV 4K, Apple TV HD and Apple Watch Series 4. A remote attacker can trick the victim to connect to a malicious website, supply a malformed certificate while connecting and perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

• https://support.apple.com/en-us/HT213633<br></p>
• https://support.apple.com/en-us/HT213633