Security Vulnerabilities - CVEs Published In April 2023
Certain Lexmark devices through 2023-02-19 have Improper Validation of an Array Index.
CVSS Score
9.8
EPSS Score
0.002
Published
2023-04-10
Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 1 of 4).
CVSS Score
8.1
EPSS Score
0.919
Published
2023-04-10
Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 2 of 4).
CVSS Score
9.8
EPSS Score
0.759
Published
2023-04-10
Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 3 of 4).
CVSS Score
9.8
EPSS Score
0.002
Published
2023-04-10
Certain Lexmark devices through 2023-02-19 mishandle Input Validation (issue 4 of 4).
CVSS Score
9.8
EPSS Score
0.002
Published
2023-04-10
An issue was discovered in Open Design Alliance Drawings SDK before 2024.1. A crafted DWG file can force the SDK to reuse an object that has been freed. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-04-10
A memory corruption issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13.1. An app may be able to execute arbitrary code with kernel privileges
CVSS Score
7.8
EPSS Score
0.0
Published
2023-04-10
A logic issue was addressed with improved restrictions. This issue is fixed in iOS 15.7.2 and iPadOS 15.7.2, macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2. An app may be able to read sensitive location information
CVSS Score
5.5
EPSS Score
0.0
Published
2023-04-10
A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Ventura 13, iOS 16. An app may be able to execute arbitrary code with kernel privileges
CVSS Score
9.8
EPSS Score
0.002
Published
2023-04-10
A logic issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.1, iOS 16.2 and iPadOS 16.2. Private Relay functionality did not match system settings
CVSS Score
7.5
EPSS Score
0.001
Published
2023-04-10