Peterpan0927

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 18.7.9 iPadOS versions prior to 18.7.9 iOS versions prior to 26.5 iPadOS versions prior to 26.5 macOS Sequoia versions prior to 15.7.7 macOS Sonoma versions prior to 14.8.7 macOS Tahoe versions prior to 26.5 tvOS versions prior to 26.5 visionOS versions prior to 26.5 watchOS versions prior to 26.5 **Description** An out-of-bounds write issue exists due to insufficient input validation. This flaw allows an application to write to kernel memory or cause unexpected system termination. **Recommendations** Update iOS to version 18.7.9 Update iPadOS to version 18.7.9 Update iOS to version 26.5 Update iPadOS to version 26.5 Update macOS Sequoia to version 15.7.7 Update macOS Sonoma to version 14.8.7 Update macOS Tahoe to version 26.5 Update tvOS to version 26.5 Update visionOS to version 26.5 Update watchOS to version 26.5

**Name of the Vulnerable Software and Affected Versions** macOS Tahoe versions prior to 26.5 **Description** A permissions issue exists where an app may be able to access protected user data. **Recommendations** Update to macOS Tahoe 26.5.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 18.7.9 iPadOS versions prior to 18.7.9 iOS versions prior to 26.5 iPadOS versions prior to 26.5 macOS Sequoia versions prior to 15.7.7 macOS Sonoma versions prior to 14.8.7 macOS Tahoe versions prior to 26.5 tvOS versions prior to 26.5 visionOS versions prior to 26.5 watchOS versions prior to 26.5 **Description** A buffer overflow, which occurs when more data is written to a memory block than it can hold, was identified. A local user could exploit this to cause unexpected system termination or read kernel memory. **Recommendations** Update iOS to version 18.7.9 or 26.5 Update iPadOS to version 18.7.9 or 26.5 Update macOS Sequoia to version 15.7.7 Update macOS Sonoma to version 14.8.7 Update macOS Tahoe to version 26.5 Update tvOS to version 26.5 Update visionOS to version 26.5 Update watchOS to version 26.5

**Name of the Vulnerable Software and Affected Versions** visionOS versions prior to 1.2 watchOS versions prior to 10.5 tvOS versions prior to 17.5 iOS versions prior to 17.5 iPadOS versions prior to 17.5 **Description** The issue was addressed with improved memory handling. An app may be able to execute arbitrary code with kernel privileges. **Recommendations** For visionOS versions prior to 1.2, update to visionOS 1.2 to resolve the issue. For watchOS versions prior to 10.5, update to watchOS 10.5 to resolve the issue. For tvOS versions prior to 17.5, update to tvOS 17.5 to resolve the issue. For iOS versions prior to 17.5, update to iOS 17.5 to resolve the issue. For iPadOS versions prior to 17.5, update to iPadOS 17.5 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Softing edgeAggregator and Softing edgeConnector modules (affected versions not specified) Softing edgeConnector Modbus (affected versions not specified) Softing edgeConnector 840D (affected versions not specified) Softing edgeConnector Fanuc CNC (affected versions not specified) Softing edgeConnector Siemens (affected versions not specified) **Description** The issue is related to the transmission of credentials in cleartext, which may allow a remote attacker to capture packets and craft their own requests, potentially leading to unauthorized access to protected information. This could enable an attacker to bypass authentication. **Recommendations** For Softing edgeAggregator, consider disabling the transmission of credentials in cleartext until a patch is available. For Softing edgeConnector modules, restrict access to sensitive information to minimize the risk of exploitation. For Softing edgeConnector Modbus, Softing edgeConnector 840D, Softing edgeConnector Fanuc CNC, and Softing edgeConnector Siemens, avoid using cleartext transmission of credentials in the affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 17.3 iPadOS versions prior to 17.3 tvOS versions prior to 17.3 macOS Ventura versions prior to 13.6.4 iOS versions prior to 16.7.5 iPadOS versions prior to 16.7.5 macOS Monterey versions prior to 12.7.3 macOS Sonoma versions prior to 14.3 **Description** The issue allows an app to potentially corrupt coprocessor memory. This was addressed with improved checks. **Recommendations** For iOS versions prior to 17.3, update to iOS 17.3 or later. For iPadOS versions prior to 17.3, update to iPadOS 17.3 or later. For tvOS versions prior to 17.3, update to tvOS 17.3 or later. For macOS Ventura versions prior to 13.6.4, update to macOS Ventura 13.6.4 or later. For iOS versions prior to 16.7.5, update to iOS 16.7.5 or later. For iPadOS versions prior to 16.7.5, update to iPadOS 16.7.5 or later. For macOS Monterey versions prior to 12.7.3, update to macOS Monterey 12.7.3 or later. For macOS Sonoma versions prior to 14.3, update to macOS Sonoma 14.3 or later.

**Name of the Vulnerable Software and Affected Versions** macOS Monterey versions prior to 12.7.2 macOS Ventura versions prior to 13.6.3 iOS versions prior to 17.2 iPadOS versions prior to 17.2 iOS versions prior to 16.7.3 iPadOS versions prior to 16.7.3 macOS Sonoma versions prior to 14.2 **Description** A race condition was addressed with improved state handling, which may allow an app to execute arbitrary code with kernel privileges. **Recommendations** For macOS Monterey versions prior to 12.7.2, update to macOS Monterey 12.7.2 or later. For macOS Ventura versions prior to 13.6.3, update to macOS Ventura 13.6.3 or later. For iOS versions prior to 17.2, update to iOS 17.2 or later. For iPadOS versions prior to 17.2, update to iPadOS 17.2 or later. For iOS versions prior to 16.7.3, update to iOS 16.7.3 or later. For iPadOS versions prior to 16.7.3, update to iPadOS 16.7.3 or later. For macOS Sonoma versions prior to 14.2, update to macOS Sonoma 14.2 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 13.6 macOS Monterey versions prior to 12.7 macOS Sonoma versions prior to 14 tvOS versions prior to 17 iOS versions prior to 16.7 iOS versions prior to 17 iPadOS versions prior to 16.7 iPadOS versions prior to 17 watchOS versions prior to 10 **Description** The issue was addressed with improved memory handling. An app may be able to execute arbitrary code with kernel privileges. **Recommendations** For macOS versions prior to 13.6, update to macOS Ventura 13.6. For macOS Monterey versions prior to 12.7, update to macOS Monterey 12.7. For macOS Sonoma versions prior to 14, update to macOS Sonoma 14. For tvOS versions prior to 17, update to tvOS 17. For iOS versions prior to 16.7, update to iOS 16.7. For iOS versions prior to 17, update to iOS 17. For iPadOS versions prior to 16.7, update to iPadOS 16.7. For iPadOS versions prior to 17, update to iPadOS 17. For watchOS versions prior to 10, update to watchOS 10.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 16.5 iPadOS versions prior to 16.5 watchOS versions prior to 9.5 tvOS versions prior to 16.5 macOS Ventura versions prior to 13.4 **Description** The issue allows an app to potentially disclose kernel memory due to inadequate redaction of sensitive information. **Recommendations** For iOS versions prior to 16.5, update to iOS 16.5 or later. For iPadOS versions prior to 16.5, update to iPadOS 16.5 or later. For watchOS versions prior to 9.5, update to watchOS 9.5 or later. For tvOS versions prior to 16.5, update to tvOS 16.5 or later. For macOS Ventura versions prior to 13.4, update to macOS Ventura 13.4 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 13.3 **Description** A user may be able to cause a denial-of-service due to an issue that was addressed with improved state management. **Recommendations** For versions prior to 13.3, update to macOS Ventura 13.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 13.2 iOS versions prior to 16.3 iOS versions prior to 15.7.3 iPadOS versions prior to 16.3 iPadOS versions prior to 15.7.3 tvOS versions prior to 16.3 watchOS versions prior to 9.3 **Description** The issue is related to an app potentially leaking sensitive kernel state due to inadequate memory handling. **Recommendations** For macOS versions prior to 13.2, update to macOS Ventura 13.2. For iOS versions prior to 16.3, update to iOS 16.3. For iOS versions prior to 15.7.3, update to iOS 15.7.3. For iPadOS versions prior to 16.3, update to iPadOS 16.3. For iPadOS versions prior to 15.7.3, update to iPadOS 15.7.3. For tvOS versions prior to 16.3, update to tvOS 16.3. For watchOS versions prior to 9.3, update to watchOS 9.3.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 13.2 **Description** The issue was addressed with improved memory handling. An app may be able to disclose kernel memory. **Recommendations** For versions prior to 13.2, update to macOS Ventura 13.2 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 12.6.3 macOS Ventura versions prior to 13.2 iOS versions prior to 16.3 iPadOS versions prior to 16.3 tvOS versions prior to 16.3 watchOS versions prior to 9.3 **Description** An information disclosure issue was addressed by removing the vulnerable code. This issue allows an app to determine kernel memory layout. **Recommendations** For macOS versions prior to 12.6.3, update to macOS Monterey 12.6.3 or later. For macOS Ventura versions prior to 13.2, update to macOS Ventura 13.2 or later. For iOS versions prior to 16.3, update to iOS 16.3 or later. For iPadOS versions prior to 16.3, update to iPadOS 16.3 or later. For tvOS versions prior to 16.3, update to tvOS 16.3 or later. For watchOS versions prior to 9.3, update to watchOS 9.3 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 12.6.2 macOS versions prior to 13.1 **Description** The issue was addressed with improved memory handling. An app may be able to disclose kernel memory. **Recommendations** For macOS versions prior to 12.6.2, update to macOS Monterey 12.6.2. For macOS versions prior to 13.1, update to macOS Ventura 13.1.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 13 **Description** An out-of-bounds read issue was addressed through improved input validation, potentially allowing an app to execute arbitrary code with kernel privileges. **Recommendations** For versions prior to 13, update to macOS Ventura 13 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 15.6 iPadOS versions prior to 15.6 macOS Big Sur versions prior to 11.6.8 watchOS versions prior to 8.7 tvOS versions prior to 15.6 macOS Monterey versions prior to 12.5 macOS Catalina versions prior to Security Update 2022-005 **Description** A memory initialization issue was addressed with improved memory handling, which may allow an app to leak sensitive user information. **Recommendations** For iOS versions prior to 15.6, update to iOS 15.6 or later. For iPadOS versions prior to 15.6, update to iPadOS 15.6 or later. For macOS Big Sur versions prior to 11.6.8, update to macOS Big Sur 11.6.8 or later. For watchOS versions prior to 8.7, update to watchOS 8.7 or later. For tvOS versions prior to 15.6, update to tvOS 15.6 or later. For macOS Monterey versions prior to 12.5, update to macOS Monterey 12.5 or later. For macOS Catalina versions prior to Security Update 2022-005, apply Security Update 2022-005 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to macOS Monterey 12.3 macOS versions prior to macOS Big Sur 11.6.5 macOS Catalina versions prior to Security Update 2022-003 **Description** A type confusion issue was addressed with improved state handling, which may allow an application to execute arbitrary code with kernel privileges. **Recommendations** For macOS Catalina versions prior to Security Update 2022-003, apply Security Update 2022-003. For macOS Big Sur versions prior to 11.6.5, update to macOS Big Sur 11.6.5. For macOS Monterey versions prior to 12.3, update to macOS Monterey 12.3.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 11.6.5 macOS Monterey versions prior to 12.3 macOS Catalina versions without Security Update 2022-003 **Description** A type confusion issue was addressed with improved state handling, allowing an application to potentially execute arbitrary code with kernel privileges. **Recommendations** For macOS versions prior to 11.6.5, update to macOS Big Sur 11.6.5 or later. For macOS Monterey versions prior to 12.3, update to macOS Monterey 12.3 or later. For macOS Catalina, apply Security Update 2022-003.

**Name of the Vulnerable Software and Affected Versions** iOS versions prior to 15.1 iPadOS versions prior to 15.1 tvOS versions prior to 15.1 **Description** A memory corruption issue was addressed with improved input validation, allowing an application to potentially execute arbitrary code with kernel privileges. **Recommendations** For iOS versions prior to 15.1, update to iOS 15.1 or later. For iPadOS versions prior to 15.1, update to iPadOS 15.1 or later. For tvOS versions prior to 15.1, update to tvOS 15.1 or later.

**Name of the Vulnerable Software and Affected Versions** macOS versions prior to 12.0.1 **Description** A race condition was addressed with improved locking, which may allow a malicious application to execute arbitrary code with kernel privileges. **Recommendations** For versions prior to 12.0.1, update to macOS Monterey 12.0.1 to resolve the issue.