0X3C3E

**Name of the Vulnerable Software and Affected Versions** cryptexctl (affected versions not specified) **Description** A permissions issue was addressed with additional restrictions. The issue involves a scenario where `sudo` attempts to load an unsigned dynamic library (`dylib`) from the current directory. This can be triggered by executing a command such as `/S*/L*/S*/u*/b*/c*.r* exec $PWD/ sudo ls`. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 13.7.3 macOS versions prior to 14.7.3 macOS versions prior to 15.3 **Description** The issue is related to errors in using standard permissions in the iCloud Photo Library of macOS operating systems. Exploitation of the issue may allow a remote attacker to bypass security restrictions. An app may be able to bypass Privacy preferences. **Recommendations** For macOS versions prior to 13.7.3, update to macOS Ventura 13.7.3 to resolve the issue. For macOS versions prior to 14.7.3, update to macOS Sonoma 14.7.3 to resolve the issue. For macOS versions prior to 15.3, update to macOS Sequoia 15.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 15.3 **Description** The issue allows an app to potentially gain elevated privileges due to inadequate message validation. This has been addressed with improved message validation. **Recommendations** For versions prior to 15.3, update to macOS Sequoia 15.3 to resolve the issue.

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.7.3 macOS versions prior to 14.7.3 macOS versions prior to 15.3 Description: The issue allows a local user to modify protected parts of the file system. It was addressed with improved checks. Recommendations: For macOS versions prior to 13.7.3, update to macOS Ventura 13.7.3. For macOS versions prior to 14.7.3, update to macOS Sonoma 14.7.3. For macOS versions prior to 15.3, update to macOS Sequoia 15.3.

**Name of the Vulnerable Software and Affected Versions** macOS Sequoia versions prior to 15.3 **Description** The issue was addressed through improved state management. It is related to errors in using standard permissions in the iCloud service for macOS, which could allow a remote attacker to execute arbitrary code. Files downloaded from the internet may not have the quarantine flag applied. **Recommendations** For versions prior to 15.3, update to macOS Sequoia 15.3 to resolve the issue. As a temporary workaround, consider applying the quarantine flag to files downloaded from the internet manually until the update is applied.

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 14.7.2 macOS versions prior to 15.2 Description: The issue was addressed with improved permissions logic. An app may be able to modify protected parts of the file system. Recommendations: For macOS versions prior to 14.7.2, update to macOS Sonoma 14.7.2. For macOS versions prior to 15.2, update to macOS Sequoia 15.2.

**Name of the Vulnerable Software and Affected Versions** macOS Ventura versions prior to 13.7.2 visionOS versions prior to 2.2 tvOS versions prior to 18.2 watchOS versions prior to 11.2 iOS versions prior to 18.2 iPadOS versions prior to 18.2 macOS Sonoma versions prior to 14.7.2 macOS Sequoia versions prior to 15.2 **Description** The issue is related to errors in state management, which may allow an app to access user-sensitive data. An attacker could exploit this issue to gain access to confidential information. **Recommendations** For macOS Ventura versions prior to 13.7.2, update to version 13.7.2 or later. For visionOS versions prior to 2.2, update to version 2.2 or later. For tvOS versions prior to 18.2, update to version 18.2 or later. For watchOS versions prior to 11.2, update to version 11.2 or later. For iOS versions prior to 18.2, update to version 18.2 or later. For iPadOS versions prior to 18.2, update to version 18.2 or later. For macOS Sonoma versions prior to 14.7.2, update to version 14.7.2 or later. For macOS Sequoia versions prior to 15.2, update to version 15.2 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 14.7.2 macOS versions prior to 15.2 **Description** A permissions issue was addressed with additional restrictions. This issue may allow an app to approve a launch daemon without user consent. The problem is related to incorrect permission storage in the SharedFileList component of macOS, which could allow an attacker to impact the integrity of protected information. **Recommendations** For macOS versions prior to 14.7.2, update to macOS Sonoma 14.7.2 to resolve the issue. For macOS versions prior to 15.2, update to macOS Sequoia 15.2 to resolve the issue. As a temporary workaround, consider restricting the approval of launch daemons to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: watchOS versions prior to 11.2 tvOS versions prior to 18.2 macOS Sequoia versions prior to 15.2 iOS versions prior to 18.2 iPadOS versions prior to 18.2 macOS Ventura versions prior to 13.7.2 macOS Sonoma versions prior to 14.7.2 Description: The issue was addressed with improved checks. A malicious app may be able to access private information. The security patch for iOS includes fixes for more than 20 security issues. Recommendations: For watchOS versions prior to 11.2, update to watchOS 11.2 or later. For tvOS versions prior to 18.2, update to tvOS 18.2 or later. For macOS Sequoia versions prior to 15.2, update to macOS Sequoia 15.2 or later. For iOS versions prior to 18.2, update to iOS 18.2 or later. For iPadOS versions prior to 18.2, update to iPadOS 18.2 or later. For macOS Ventura versions prior to 13.7.2, update to macOS Ventura 13.7.2 or later. For macOS Sonoma versions prior to 14.7.2, update to macOS Sonoma 14.7.2 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 13.7.1 macOS versions prior to 14.7.1 **Description** The issue allows a malicious application to modify protected parts of the file system. This was addressed with improved checks. **Recommendations** For macOS versions prior to 13.7.1, update to macOS Ventura 13.7.1 to resolve the issue. For macOS versions prior to 14.7.1, update to macOS Sonoma 14.7.1 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 13.7.1 macOS versions prior to 14.7.1 **Description** A path deletion issue was addressed by preventing vulnerable code from running with privileges, which could allow an app to bypass Privacy preferences. **Recommendations** For versions prior to 13.7.1, update to macOS Ventura 13.7.1. For versions prior to 14.7.1, update to macOS Sonoma 14.7.1.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 14.7 macOS versions prior to 15 **Description** A logic issue was addressed with improved checks, allowing an app to potentially modify protected parts of the file system. **Recommendations** For macOS versions prior to 14.7, update to macOS Sonoma 14.7 to resolve the issue. For macOS versions prior to 15, update to macOS Sequoia 15 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 14.6 **Description** The issue allows an app to potentially modify protected parts of the file system. It was addressed with improved checks. **Recommendations** For versions prior to 14.6, update to macOS Sonoma 14.6 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 12.7.2 macOS versions prior to 13.6.3 macOS versions prior to 14.2 **Description** The issue allows an app to modify protected parts of the file system. It was addressed with improved checks. **Recommendations** For macOS versions prior to 12.7.2, update to macOS Monterey 12.7.2. For macOS versions prior to 13.6.3, update to macOS Ventura 13.6.3. For macOS versions prior to 14.2, update to macOS Sonoma 14.2.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 12.7.1 macOS versions prior to 13.6.1 macOS versions prior to 14.1 **Description** The issue allows an app to modify protected parts of the file system. It was addressed with improved checks. **Recommendations** For macOS versions prior to 12.7.1, update to macOS Monterey 12.7.1. For macOS versions prior to 13.6.1, update to macOS Ventura 13.6.1. For macOS versions prior to 14.1, update to macOS Sonoma 14.1.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 12.7.1 macOS versions prior to 13.6.1 macOS versions prior to 14.1 **Description** The issue was addressed with improved checks. An app may be able to modify protected parts of the file system. **Recommendations** For macOS versions prior to 12.7.1, update to macOS Monterey 12.7.1. For macOS versions prior to 13.6.1, update to macOS Ventura 13.6.1. For macOS versions prior to 14.1, update to macOS Sonoma 14.1.

**Name of the Vulnerable Software and Affected Versions** watchOS versions prior to 10 iPadOS versions prior to 17 macOS versions prior to Sonoma 14 iOS versions prior to 17 **Description** The issue is related to a lack of protection for service data in the TCC component of the mentioned operating systems. This could allow an attacker to disclose protected information. An app may be able to access user-sensitive data due to this issue. **Recommendations** For watchOS versions prior to 10, update to watchOS 10 or later. For iPadOS versions prior to 17, update to iPadOS 17 or later. For macOS versions prior to Sonoma 14, update to macOS Sonoma 14 or later. For iOS versions prior to 17, update to iOS 17 or later.

**Name of the Vulnerable Software and Affected Versions** watchOS versions prior to 10 iOS versions prior to 17 tvOS versions prior to 17 iPadOS versions prior to 17 **Description** The issue is related to insufficient access controls in the Simulator component of the operating systems, which may allow an attacker to gain elevated privileges. The estimated number of potentially affected devices is not provided. There is no information about real-world incidents where this issue was exploited. **Recommendations** For watchOS versions prior to 10, update to watchOS 10 to resolve the issue. For iOS versions prior to 17, update to iOS 17 to resolve the issue. For tvOS versions prior to 17, update to tvOS 17 to resolve the issue. For iPadOS versions prior to 17, update to iPadOS 17 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 11.7.9 macOS versions prior to 12.6.8 macOS versions prior to 13.5 **Description** A race condition was addressed with improved state handling, which could allow an app to gain root privileges. The issue is caused by concurrent execution using a shared resource with incorrect synchronization, also known as a race condition. This could potentially allow an attacker to elevate their privileges to the root level. **Recommendations** For macOS versions prior to 11.7.9, update to macOS Big Sur 11.7.9 to resolve the issue. For macOS versions prior to 12.6.8, update to macOS Monterey 12.6.8 to resolve the issue. For macOS versions prior to 13.5, update to macOS Ventura 13.5 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 15.7.8 iPadOS versions prior to 15.7.8 macOS Big Sur versions prior to 11.7.9 macOS Monterey versions prior to 12.6.8 macOS Ventura versions prior to 13.5 **Description** The issue is related to an out-of-bounds read in the kernel of the operating systems, which can be exploited to execute arbitrary code with kernel privileges. This is achieved through improved bounds checking. **Recommendations** For iOS versions prior to 15.7.8, update to iOS 15.7.8. For iPadOS versions prior to 15.7.8, update to iPadOS 15.7.8. For macOS Big Sur versions prior to 11.7.9, update to macOS Big Sur 11.7.9. For macOS Monterey versions prior to 12.6.8, update to macOS Monterey 12.6.8. For macOS Ventura versions prior to 13.5, update to macOS Ventura 13.5.