Apple Releases iOS/iPadOS 16.6.1, macOS 13.5.2, watchOS 9.6.2 fixing two zeroday vulnerabilities

Published: 2023-09-07
Last Updated: 2023-09-08 14:57:04 UTC
by Johannes Ullrich (Version: 1)
0 comment(s)
macOS Ventura 13.5.2 iOS 16.6.1 and iPadOS 16.6.1 watchOS 9.6.2
CVE-2023-41064 [critical] ChatGPT-CVSS: 9.8 *** EXPLOITED *** ImageIO
A buffer overflow issue was addressed with improved memory handling.
Processing a maliciously crafted image may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
x x  
CVE-2023-41061 [moderate] ChatGPT-CVSS: 9.8 *** EXPLOITED *** Wallet
A validation issue was addressed with improved logic.
A maliciously crafted attachment may result in arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
  x x

 

---
Johannes B. Ullrich, Ph.D. , Dean of Research, SANS.edu
Twitter|

Keywords: 0day citizens labs ios macos watchos
0 comment(s)

Comments

Login here to join the discussion.


Top of page
Diary Archives