CVE-2023-27946
Summary
| CVE | CVE-2023-27946 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2023-05-08 20:15:00 UTC |
| Updated | 2023-07-27 04:15:00 UTC |
| Description | An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Ventura 13.3, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution. |
Risk And Classification
Problem Types: CWE-125
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| About the security content of macOS Ventura 13.3 - Apple Support | MISC | support.apple.com | |
| About the security content of macOS Monterey 12.6.4 - Apple Support | MISC | support.apple.com | |
| Full Disclosure: APPLE-SA-2023-03-27-2 iOS 15.7.4 and iPadOS 15.7.4 | FULLDISC | seclists.org | |
| About the security content of iOS 15.7.4 and iPadOS 15.7.4 - Apple Support | MISC | support.apple.com | |
| About the security content of macOS Big Sur 11.7.5 - Apple Support | MISC | support.apple.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 378188 Apple macOS Big Sur 11.7.5 Not Installed (HT213675)
- 378189 Apple macOS Ventura 13.3 Not Installed (HT213670)
- 378190 Apple macOS Monterey 12.6.4 Not Installed (HT213677)
- 610474 Apple iOS 15.7.4 and iPadOS 15.7.4 Security Update Missing
- 610476 Apple iOS 15.7.4 and iPadOS 15.7.4 Security Update Missing