Test ID:	1.3.6.1.4.1.25623.1.0.832338
Category:	Mac OS X Local Security Checks
Title:	Apple Mac OS X Security Update (HT213845)
Summary:	Apple Mac OS X is prone to multiple; vulnerabilities.
Description:	Summary: Apple Mac OS X is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws exist due to, - An improper usage and handling of curl, caches. - An improper private data redaction for log entries, - An improper processing of files. - A use-after-free in memory management. - An improper bounds checking and input validation. For more information about the vulnerabilities refer to Reference links. Vulnerability Impact: Successful exploitation will allow attackers to execute arbitrary code with kernel privileges and disclose sensitive information on an affected system. Affected Software/OS: Apple Mac OS X Big Sur versions 11.x before 11.7.9. Solution: Upgrade to version 11.7.9 or later. Please see the references for more information. CVSS Score: 9.4 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:N/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-35983 https://support.apple.com/en-us/HT213843 https://support.apple.com/en-us/HT213844 https://support.apple.com/en-us/HT213845 Common Vulnerability Exposure (CVE) ID: CVE-2023-28319 http://seclists.org/fulldisclosure/2023/Jul/47 http://seclists.org/fulldisclosure/2023/Jul/48 http://seclists.org/fulldisclosure/2023/Jul/52 https://security.gentoo.org/glsa/202310-12 https://hackerone.com/reports/1913733 Common Vulnerability Exposure (CVE) ID: CVE-2023-28320 https://hackerone.com/reports/1929597 Common Vulnerability Exposure (CVE) ID: CVE-2023-28321 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/F4I75RDGX5ULSSCBE5BF3P5I5SFO7ULQ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Z2LIWHWKOVH24COGGBCVOWDXXIUPKOMK/ https://hackerone.com/reports/1950627 https://lists.debian.org/debian-lts-announce/2023/10/msg00016.html Common Vulnerability Exposure (CVE) ID: CVE-2023-28322 https://hackerone.com/reports/1954658 https://lists.debian.org/debian-lts-announce/2023/12/msg00015.html Common Vulnerability Exposure (CVE) ID: CVE-2023-36854 Common Vulnerability Exposure (CVE) ID: CVE-2023-32418 Common Vulnerability Exposure (CVE) ID: CVE-2023-32381 https://support.apple.com/en-us/HT213841 https://support.apple.com/en-us/HT213846 https://support.apple.com/en-us/HT213848 Common Vulnerability Exposure (CVE) ID: CVE-2023-32433 https://support.apple.com/en-us/HT213842 Common Vulnerability Exposure (CVE) ID: CVE-2023-35993 Common Vulnerability Exposure (CVE) ID: CVE-2023-38606 Common Vulnerability Exposure (CVE) ID: CVE-2023-32441 Common Vulnerability Exposure (CVE) ID: CVE-2023-38565 Common Vulnerability Exposure (CVE) ID: CVE-2023-38593 Common Vulnerability Exposure (CVE) ID: CVE-2023-2953 https://access.redhat.com/security/cve/CVE-2023-2953 https://bugs.openldap.org/show_bug.cgi?id=9904 Common Vulnerability Exposure (CVE) ID: CVE-2023-38259 Common Vulnerability Exposure (CVE) ID: CVE-2023-38602 Common Vulnerability Exposure (CVE) ID: CVE-2023-32443 Common Vulnerability Exposure (CVE) ID: CVE-2023-40442 Common Vulnerability Exposure (CVE) ID: CVE-2023-41990 https://support.apple.com/en-us/HT213599 https://support.apple.com/en-us/HT213601 https://support.apple.com/en-us/HT213605 https://support.apple.com/en-us/HT213606 Common Vulnerability Exposure (CVE) ID: CVE-2023-42829 Common Vulnerability Exposure (CVE) ID: CVE-2023-42831 Common Vulnerability Exposure (CVE) ID: CVE-2023-42832 Common Vulnerability Exposure (CVE) ID: CVE-2023-38603 Common Vulnerability Exposure (CVE) ID: CVE-2023-1801 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WYL5DEVHRJYF2CM5LTCZKEYFYDZAIZSN/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KOA2BJFERAC3VRQIRHJOWN4HZY4ZA7CH/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZLLZCG23MU6O4QOG2CX3DLEL3YXP6LAI/ https://github.com/the-tcpdump-group/tcpdump/commit/03c037bbd75588beba3ee09f26d17783d21e30bc https://github.com/the-tcpdump-group/tcpdump/commit/7578e1c04ee280dda50c4c2813e7d55f539c6501 Common Vulnerability Exposure (CVE) ID: CVE-2023-2426 https://huntr.dev/bounties/3451be4c-91c8-4d08-926b-cbff7396f425 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PCLJN4QINITA3ZASKLEJ64C5TFNKELMO/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LOJP6M7ZTKZQYOGVOOAY6TIE6ACBJL55/ https://github.com/vim/vim/commit/caf642c25de526229264cab9425e7c9979f3509b Common Vulnerability Exposure (CVE) ID: CVE-2023-2609 https://huntr.dev/bounties/1679be5a-565f-4a44-a430-836412a0b622 https://github.com/vim/vim/commit/d1ae8366aff286d41e7f5bc513cc0a1af5130aad Common Vulnerability Exposure (CVE) ID: CVE-2023-2610 https://huntr.dev/bounties/31e67340-935b-4f6c-a923-f7246bc29c7d https://github.com/vim/vim/commit/ab9a2d884b3a4abe319606ea95a5a6d6b01cd73a https://lists.debian.org/debian-lts-announce/2023/06/msg00015.html
Copyright	Copyright (C) 2023 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.