Luyi Xing

Name of the Vulnerable Software and Affected Versions: visionOS versions prior to 2.1 iOS versions prior to 18.1 iPadOS versions prior to 18.1 iOS versions prior to 17.7.1 iPadOS versions prior to 17.7.1 tvOS versions prior to 18.1 macOS Sonoma versions prior to 14.7.1 watchOS versions prior to 11.1 macOS Ventura versions prior to 13.7.1 Description: A denial-of-service issue was addressed with improved input validation. A remote attacker may be able to cause a denial-of-service. Recommendations: Update to visionOS 2.1 or later. Update to iOS 18.1 or later. Update to iPadOS 18.1 or later. Update to iOS 17.7.1 or later. Update to iPadOS 17.7.1 or later. Update to tvOS 18.1 or later. Update to macOS Sonoma 14.7.1 or later. Update to watchOS 11.1 or later. Update to macOS Ventura 13.7.1 or later.

**Name of the Vulnerable Software and Affected Versions** Chipolo ONE Bluetooth tracker (2020) version 4.13.0 Chipolo iOS app version 4.13.0 **Description** The issue concerns Incorrect Access Control, allowing access revocation evasion attacks. Once a malicious sharee obtains access credentials, Chipolo devices can be affected. **Recommendations** For Chipolo ONE Bluetooth tracker (2020) version 4.13.0, update the Chipolo iOS app to a version that addresses the access control issue. For Chipolo iOS app version 4.13.0, consider restricting access to sensitive features until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Eclipse Mosquitto versions 1.6 through 2.0.11 **Description** The issue is related to the implementation of the MQTT v5 protocol in Eclipse Mosquitto, which can cause excessive CPU usage. This can be exploited by a remote attacker to cause a denial of service. The problem occurs when an MQTT v5 client connects with a large number of `user-property` properties. **Recommendations** For Eclipse Mosquitto versions 1.6 through 2.0.11, consider restricting the number of `user-property` properties that can be sent by an MQTT v5 client to prevent excessive CPU usage. As a temporary workaround, restrict access to the MQTT v5 protocol until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 11.1 macOS Big Sur version 11.0.1 Security Update versions prior to 2020-001 Catalina Security Update versions prior to 2020-007 Mojave **Description** An out-of-bounds write issue was addressed with improved bounds checking, allowing an application to potentially execute arbitrary code with kernel privileges. **Recommendations** For macOS versions prior to 11.1, update to macOS Big Sur 11.1 or later. For macOS Big Sur version 11.0.1, update to macOS Big Sur 11.1 or later. For Security Update versions prior to 2020-001 Catalina, apply Security Update 2020-001 Catalina or later. For Security Update versions prior to 2020-007 Mojave, apply Security Update 2020-007 Mojave or later.

**Name of the Vulnerable Software and Affected Versions** Apple macOS versions prior to 11.1 Apple macOS versions prior to Security Update 2020-001 Catalina Apple macOS versions prior to Security Update 2020-007 Mojave Apple macOS version 11.0.1 **Description** An out-of-bounds write issue was addressed with improved bounds checking, allowing an application to potentially execute arbitrary code with kernel privileges. **Recommendations** For macOS Big Sur, update to version 11.1 or later. For macOS Catalina, apply Security Update 2020-001 or later. For macOS Mojave, apply Security Update 2020-007 or later. For macOS Big Sur 11.0.1, update to a newer version that includes the security fix.

**Name of the Vulnerable Software and Affected Versions** macOS Big Sur versions prior to 11.0.1 macOS Big Sur versions prior to 11.1 tvOS versions prior to 14.0 macOS Catalina versions prior to Security Update 2020-001 macOS Mojave versions prior to Security Update 2020-007 watchOS versions prior to 7.0 iOS versions prior to 14.0 iPadOS versions prior to 14.0 **Description** This issue was addressed with improved setting propagation. An attacker in a privileged network position may be able to unexpectedly alter application state. **Recommendations** For macOS Big Sur versions prior to 11.0.1, update to macOS Big Sur 11.0.1 or later. For macOS Big Sur versions prior to 11.1, update to macOS Big Sur 11.1 or later. For tvOS versions prior to 14.0, update to tvOS 14.0 or later. For macOS Catalina versions prior to Security Update 2020-001, apply Security Update 2020-001 or later. For macOS Mojave versions prior to Security Update 2020-007, apply Security Update 2020-007 or later. For watchOS versions prior to 7.0, update to watchOS 7.0 or later. For iOS versions prior to 14.0, update to iOS 14.0 or later. For iPadOS versions prior to 14.0, update to iPadOS 14.0 or later.

**Name of the Vulnerable Software and Affected Versions** watchOS versions prior to 6.1.2 iOS versions prior to 13.3.1 iPadOS versions prior to 13.3.1 tvOS versions prior to 13.3.1 **Description** A memory corruption issue was addressed with improved memory handling, allowing an application to potentially execute arbitrary code with kernel privileges. **Recommendations** For watchOS versions prior to 6.1.2, update to watchOS 6.1.2 to resolve the issue. For iOS versions prior to 13.3.1, update to iOS 13.3.1 to resolve the issue. For iPadOS versions prior to 13.3.1, update to iPadOS 13.3.1 to resolve the issue. For tvOS versions prior to 13.3.1, update to tvOS 13.3.1 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS Catalina versions prior to 10.15.4 macOS Mojave versions prior to Security Update 2020-002 macOS High Sierra versions prior to Security Update 2020-002 **Description** A use after free issue was addressed with improved memory management, which may allow an application to gain elevated privileges. **Recommendations** For macOS Catalina versions prior to 10.15.4, update to macOS Catalina 10.15.4 or later. For macOS Mojave versions prior to Security Update 2020-002, apply Security Update 2020-002 or later. For macOS High Sierra versions prior to Security Update 2020-002, apply Security Update 2020-002 or later.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 13.3.1 iPadOS versions prior to 13.3.1 **Description** A memory corruption issue was addressed with improved memory handling, allowing an application to potentially execute arbitrary code with kernel privileges. **Recommendations** For iOS versions prior to 13.3.1, update to iOS 13.3.1 to resolve the issue. For iPadOS versions prior to 13.3.1, update to iPadOS 13.3.1 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** watchOS versions prior to 6.1.2 **Description** A memory corruption issue was addressed with improved state management, allowing an application to potentially execute arbitrary code with kernel privileges. **Recommendations** For versions prior to 6.1.2, update to watchOS 6.1.2 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Google Chrome on Android versions prior to 72.0.3626.81 **Description** The issue concerns insufficient protection of permission UI in WebAPKs, allowing an attacker to access privacy and security-sensitive web APIs. This can occur if the user is convinced to install a malicious application. The exploitation enables a remote attacker to gain unauthorized access to information using a specially crafted APK. **Recommendations** For versions prior to 72.0.3626.81, update to version 72.0.3626.81 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Apple OS X versions prior to 10.11.2 tvOS versions prior to 9.1 **Description** The issue is related to improper interaction between Keychain Access and Keychain Agent. This allows attackers to spoof the Keychain Server, potentially enabling remote attackers to substitute the Keychain Server. **Recommendations** For Apple OS X versions prior to 10.11.2, update to version 10.11.2 or later. For tvOS versions prior to 9.1, update to version 9.1 or later.

**Name of the Vulnerable Software and Affected Versions** Apple OS X versions prior to 10.11 **Description** The issue is related to improper validation of iCloud keychain item ACLs in the Apple Online Store Kit. This allows attackers to obtain access to keychain items via a crafted app. The vulnerability can be exploited by a remote attacker using a specially formed application to gain access to keychain item management. **Recommendations** For versions prior to 10.11, update to version 10.11 or later to resolve the issue. As a temporary workaround, consider restricting access to keychain items to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Apple iOS versions prior to 9 **Description** The issue is related to a lack of protection for service data in the iOS operating system. It allows a remote attacker to obtain sensitive information about inter-app communication via a crafted app that conducts an interception attack. The attack involves an unspecified URL scheme and can provide access to protected information. **Recommendations** For Apple iOS versions prior to 9, update to version 9 or later to resolve the issue. As a temporary workaround, consider restricting the installation of third-party apps to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** OS X versions prior to 10.10.5 **Description** The issue is related to the Bluetooth subsystem, which does not properly restrict access to certain data. This allows attackers to read Notification Center notifications of paired devices using a crafted app. The estimated number of potentially affected devices and details about real-world incidents are not provided. **Recommendations** For OS X versions prior to 10.10.5, update to version 10.10.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the Notification Center Service to minimize the risk of exploitation.