Apple macOS 13.0
Approved changes feed: RSS · Atom
cpe:2.3:o:apple:macos:13.0:*:*:*:*:*:*:*
part: o version: 13.0 update: *
| Vendor | Apple (c2b419d0-9f0f-51c1-88dc-2e204a98e1c7) |
|---|---|
| Product | Macos (3d717c28-5560-5fec-9005-c3126200fe8b) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-40828 |
vulnerable | 2026-06-03 14:56:33.610459 |
Details available
The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8. A malicious app may be able to gain root privileges.
Published: 2024-07-29T22:17:14.863Z
Updated: 2026-04-02T18:24:24.333Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-40821 |
vulnerable | 2026-06-03 14:56:33.606183 |
Details available
An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8. Third party app extensions may not receive the correct sandbox restrictions.
Published: 2024-07-29T22:16:50.306Z
Updated: 2026-04-02T18:15:31.108Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-40815 |
vulnerable | 2026-06-03 14:56:33.603712 |
Details available
A race condition was addressed with additional validation. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, tvOS 17.6, watchOS 10.6. A malicious attacker with arbitrary read and write capability may be able to bypass Pointer Authentication.
Published: 2024-07-29T22:17:07.016Z
Updated: 2026-04-02T18:22:19.553Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-40800 |
vulnerable | 2026-06-03 14:56:33.578200 |
Details available
An input validation issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8. An app may be able to modify protected parts of the file system.
Published: 2024-07-29T22:16:43.666Z
Updated: 2026-04-02T18:13:17.581Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-40784 |
vulnerable | 2026-06-03 14:56:33.565630 |
Details available
An integer overflow was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, macOS Ventura 13.6.8, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing a maliciously crafted file may lead to unexpected app termination.
Published: 2024-07-29T22:17:04.342Z
Updated: 2026-04-02T18:21:59.917Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-40781 |
vulnerable | 2026-06-03 14:56:33.554978 |
Details available
The issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8. A local attacker may be able to elevate their privileges.
Published: 2024-07-29T22:16:30.167Z
Updated: 2026-04-02T18:09:00.419Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-27855 |
vulnerable | 2026-06-03 14:55:18.125606 |
Details available
The issue was addressed with improved checks. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Sonoma 14.5, macOS Ventura 13.6.7. A shortcut may be able to use sensitive data with certain actions without prompting the user.
Published: 2024-06-10T20:56:40.924Z
Updated: 2026-04-02T18:16:59.729Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-27826 |
vulnerable | 2026-06-03 14:55:18.097128 |
Details available
The issue was addressed with improved memory handling. This issue is fixed in iOS 17.5 and iPadOS 17.5, macOS Monterey 12.7.6, macOS Sonoma 14.5, macOS Ventura 13.6.8, tvOS 17.5, visionOS 1.3, watchOS 10.5. A local attacker may be able to cause unexpected system shutdown.
Published: 2024-07-29T22:17:21.773Z
Updated: 2026-04-02T18:26:54.823Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-27805 |
vulnerable | 2026-06-03 14:55:18.061651 |
Details available
An issue was addressed with improved validation of environment variables. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS Ventura 13.6.7, tvOS 17.5, watchOS 10.5. An app may be able to access sensitive user data.
Published: 2024-06-10T20:56:36.274Z
Updated: 2026-04-02T18:08:35.675Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-27802 |
vulnerable | 2026-06-03 14:55:18.053776 |
Details available
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS Ventura 13.6.7, tvOS 17.5, visionOS 1.2. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution.
Published: 2024-06-10T20:56:41.329Z
Updated: 2026-04-02T18:17:12.947Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-27800 |
vulnerable | 2026-06-03 14:55:18.046089 |
Details available
This issue was addressed by removing the vulnerable code. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Monterey 12.7.5, macOS Sonoma 14.5, macOS Ventura 13.6.7, tvOS 17.5, visionOS 1.2, watchOS 10.5. Processing a maliciously crafted message may lead to a denial-of-service.
Published: 2024-06-10T20:56:44.028Z
Updated: 2026-04-02T18:21:36.397Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-27791 |
vulnerable | 2026-06-03 14:55:18.029415 |
Details available
The issue was addressed with improved checks. This issue is fixed in iOS 16.7.5 and iPadOS 16.7.5, iOS 17.3 and iPadOS 17.3, macOS Monterey 12.7.3, macOS Sonoma 14.3, macOS Ventura 13.6.4, tvOS 17.3. An app may be able to corrupt coprocessor memory.
Published: 2024-04-24T16:43:44.979Z
Updated: 2026-04-02T18:21:22.054Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23274 |
vulnerable | 2026-06-03 14:55:02.157927 |
Details available
An injection issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5. An app may be able to elevate privileges.
Published: 2024-03-08T01:36:06.303Z
Updated: 2026-04-02T18:23:30.816Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23270 |
vulnerable | 2026-06-03 14:55:02.155033 |
Details available
The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, tvOS 17.4. An app may be able to execute arbitrary code with kernel privileges.
Published: 2024-03-08T01:35:35.392Z
Updated: 2026-04-02T18:14:10.366Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23268 |
vulnerable | 2026-06-03 14:55:02.153441 |
Details available
An injection issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5. An app may be able to elevate privileges.
Published: 2024-03-08T01:35:48.416Z
Updated: 2026-04-02T18:18:27.496Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23225 |
vulnerable | 2026-06-03 14:55:02.084290 |
Details available
A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, tvOS 17.4, visionOS 1.1, watchOS 10.4. An attacker with arbitrary kernel read and write capability may be able to bypass kernel memory protections. Apple is aware of a report that this issue may have been exploited.
Published: 2024-03-05T19:24:12.330Z
Updated: 2026-04-02T18:20:00.500Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-42931 |
vulnerable | 2026-06-03 14:52:54.451789 |
Details available
The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.6.3, macOS Sonoma 14.2, macOS Monterey 12.7.2. A process may gain admin privileges without proper authentication.
Published: 2024-03-28T15:39:16.899Z
Updated: 2025-11-04T19:24:30.775Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-42877 |
vulnerable | 2026-06-03 14:52:54.405443 |
Details available
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.1, macOS Monterey 12.7.1, macOS Ventura 13.6.1. An app may be able to modify protected parts of the file system.
Published: 2024-02-21T06:41:06.036Z
Updated: 2025-11-04T19:22:58.431Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-42859 |
vulnerable | 2026-06-03 14:52:54.394101 |
Details available
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.1, macOS Monterey 12.7.1, macOS Ventura 13.6.1. An app may be able to modify protected parts of the file system.
Published: 2024-02-21T06:41:22.075Z
Updated: 2025-11-04T19:22:37.452Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-42838 |
vulnerable | 2026-06-03 14:52:54.369390 |
Details available
An access issue was addressed with improvements to the sandbox. This issue is fixed in macOS Ventura 13.6.3, macOS Sonoma 14.1, macOS Monterey 12.7.2. An app may be able to execute arbitrary code out of its sandbox or with certain elevated privileges.
Published: 2024-02-21T06:41:24.366Z
Updated: 2025-11-04T19:22:16.497Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-23513 |
vulnerable | 2026-06-03 14:49:27.352503 |
Details available
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.7.3, macOS Ventura 13.2, macOS Monterey 12.6.3. Mounting a maliciously crafted Samba network share may lead to arbitrary code execution.
Published: 2023-02-27T00:00:00.000Z
Updated: 2024-08-02T10:35:33.199Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-46704 |
vulnerable | 2026-06-03 14:48:26.311708 |
Details available
A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.1, macOS Big Sur 11.7.2, macOS Monterey 12.6.2. An app may be able to modify protected parts of the file system.
Published: 2023-02-27T00:00:00.000Z
Updated: 2025-03-11T14:29:05.417Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-46700 |
vulnerable | 2026-06-03 14:48:26.308284 |
Details available
A memory corruption issue was addressed with improved input validation. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may lead to arbitrary code execution.
Published: 2022-12-15T00:00:00.000Z
Updated: 2025-04-21T13:44:37.601Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-42864 |
vulnerable | 2026-06-03 14:48:13.138403 |
Details available
A race condition was addressed with improved state handling. This issue is fixed in tvOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. An app may be able to execute arbitrary code with kernel privileges.
Published: 2022-12-15T00:00:00.000Z
Updated: 2025-04-23T19:59:46.015Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-42861 |
vulnerable | 2026-06-03 14:48:13.136413 |
Details available
This issue was addressed with improved checks. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2. An app may be able to break out of its sandbox.
Published: 2022-12-15T00:00:00.000Z
Updated: 2025-04-21T15:14:48.760Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-42855 |
vulnerable | 2026-06-03 14:48:13.133888 |
Details available
A logic issue was addressed with improved state management. This issue is fixed in tvOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2. An app may be able to use arbitrary entitlements.
Published: 2022-12-15T00:00:00.000Z
Updated: 2025-04-21T16:06:02.657Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-42854 |
vulnerable | 2026-06-03 14:48:13.133249 |
Details available
The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.2, macOS Ventura 13.1. An app may be able to disclose kernel memory.
Published: 2022-12-15T00:00:00.000Z
Updated: 2025-04-21T14:56:24.236Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-42852 |
vulnerable | 2026-06-03 14:48:13.132435 |
Details available
The issue was addressed with improved memory handling. This issue is fixed in Safari 16.2, tvOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. Processing maliciously crafted web content may result in the disclosure of process memory.
Published: 2022-12-15T00:00:00.000Z
Updated: 2025-04-21T15:00:21.446Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-42845 |
vulnerable | 2026-06-03 14:48:13.128972 |
Details available
The issue was addressed with improved memory handling. This issue is fixed in tvOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. An app with root privileges may be able to execute arbitrary code with kernel privileges.
Published: 2022-12-15T00:00:00.000Z
Updated: 2025-04-21T15:11:14.315Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-42843 |
vulnerable | 2026-06-03 14:48:13.127903 |
Details available
This issue was addressed with improved data protection. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, tvOS 16.2, watchOS 9.2. A user may be able to view sensitive user information.
Published: 2022-12-15T00:00:00.000Z
Updated: 2025-04-21T16:09:15.799Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-42842 |
vulnerable | 2026-06-03 14:48:13.127323 |
Details available
The issue was addressed with improved memory handling. This issue is fixed in tvOS 16.2, macOS Monterey 12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, iOS 16.2 and iPadOS 16.2, watchOS 9.2. A remote user may be able to cause kernel code execution.
Published: 2022-12-15T00:00:00.000Z
Updated: 2025-04-21T16:10:15.452Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-42841 |
vulnerable | 2026-06-03 14:48:13.126632 |
Details available
A type confusion issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2. Processing a maliciously crafted package may lead to arbitrary code execution.
Published: 2022-12-15T00:00:00.000Z
Updated: 2025-04-21T16:53:13.587Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-42840 |
vulnerable | 2026-06-03 14:48:13.126160 |
Details available
The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2, iOS 15.7.2 and iPadOS 15.7.2, iOS 16.2 and iPadOS 16.2. An app may be able to execute arbitrary code with kernel privileges.
Published: 2022-12-15T00:00:00.000Z
Updated: 2025-04-21T16:55:26.328Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-42837 |
vulnerable | 2026-06-03 14:48:13.124651 |
Details available
An issue existed in the parsing of URLs. This issue was addressed with improved input validation. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, iOS 15.7.2 and iPadOS 15.7.2, watchOS 9.2. A remote user may be able to cause unexpected app termination or arbitrary code execution.
Published: 2022-12-15T00:00:00.000Z
Updated: 2025-04-21T17:00:52.255Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-32943 |
vulnerable | 2026-06-03 14:47:23.450360 |
Details available
The issue was addressed with improved bounds checks. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1. Shake-to-undo may allow a deleted photo to be re-surfaced without authentication.
Published: 2022-12-15T00:00:00.000Z
Updated: 2025-04-21T15:19:48.118Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-32942 |
vulnerable | 2026-06-03 14:47:23.449779 |
Details available
The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.2, macOS Ventura 13.1, macOS Big Sur 11.7.2. An app may be able to execute arbitrary code with kernel privileges.
Published: 2022-12-15T00:00:00.000Z
Updated: 2025-04-21T15:21:24.886Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-39537 |
vulnerable | 2026-06-03 14:45:09.607476 |
Details available
An issue was discovered in ncurses through v6.2-1. _nc_captoinfo in captoinfo.c has a heap-based buffer overflow.
Published: 2021-09-20T00:00:00.000Z
Updated: 2024-08-04T02:06:42.632Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.