CVE-2023-40410

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.6, tvOS 17, macOS Monterey 12.7, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to disclose kernel memory.

• CWE-125

• http://seclists.org/fulldisclosure/2023/Oct/10
• http://seclists.org/fulldisclosure/2023/Oct/3
• http://seclists.org/fulldisclosure/2023/Oct/5Mailing List, Third Party Advisory
• http://seclists.org/fulldisclosure/2023/Oct/6
• http://seclists.org/fulldisclosure/2023/Oct/9
• https://support.apple.com/en-us/HT213931Release Notes, Vendor Advisory
• https://support.apple.com/en-us/HT213932Release Notes, Vendor Advisory
• https://support.apple.com/en-us/HT213936Release Notes, Vendor Advisory
• https://support.apple.com/en-us/HT213937Release Notes, Vendor Advisory
• https://support.apple.com/en-us/HT213938Release Notes, Vendor Advisory
• https://support.apple.com/en-us/HT213940Release Notes, Vendor Advisory
• http://seclists.org/fulldisclosure/2023/Oct/10
• http://seclists.org/fulldisclosure/2023/Oct/3
• http://seclists.org/fulldisclosure/2023/Oct/5Mailing List, Third Party Advisory
• http://seclists.org/fulldisclosure/2023/Oct/6
• http://seclists.org/fulldisclosure/2023/Oct/9
• https://support.apple.com/en-us/HT213931Release Notes, Vendor Advisory
• https://support.apple.com/en-us/HT213932Release Notes, Vendor Advisory
• https://support.apple.com/en-us/HT213936Release Notes, Vendor Advisory
• https://support.apple.com/en-us/HT213937Release Notes, Vendor Advisory
• https://support.apple.com/en-us/HT213938Release Notes, Vendor Advisory
• https://support.apple.com/en-us/HT213940Release Notes, Vendor Advisory
• https://support.apple.com/kb/HT213931
• https://support.apple.com/kb/HT213932
• https://support.apple.com/kb/HT213936
• https://support.apple.com/kb/HT213937
• https://support.apple.com/kb/HT213938
• https://support.apple.com/kb/HT213940

Published

Sep 27, 2023

Last Modified

Jun 17, 2026

Status

Modified