CVE-2023-28191

MEDIUM Year: 2023
CVSS v3 Score
5.5
Medium
Weakness Type
CWE-346
View all →

Vulnerability Description

This issue was addressed with improved redaction of sensitive information. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. An app may be able to bypass Privacy preferences.

Related Vulnerabilities

CVE-2017-1000455

MEDIUM
CVSS:5.5(Medium)

GuixSD prior to Git commit 5e66574a128937e7f2fcf146d146225703ccfd5d used POSIX hard links incorrectly, leading the creation of setuid executables in "the store", violating a fundamental security assum...

CWE-3462017

CVE-2019-1442

MEDIUM
CVSS:5.5(Medium)

A security feature bypass vulnerability exists when Microsoft Office does not validate URLs.An attacker could send a victim a specially crafted file, which could trick the victim into entering credent...

CWE-3462019

CVE-2019-5226

MEDIUM
CVSS:5.5(Medium)

P30, P30 Pro, Mate 20 smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193(C00E190R2P1), versions earlier than VOGUE-AL00A 9.1.0.193(C00E190R2P1), versions earlier than Hima-AL00B 9...

CWE-3462019

CVE-2019-5227

MEDIUM
CVSS:5.5(Medium)

P30, P30 Pro, Mate 20 smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193(C00E190R2P1), versions earlier than VOGUE-AL00A 9.1.0.193(C00E190R2P1), versions earlier than Hima-AL00B 9...

CWE-3462019

CVE-2020-15734

MEDIUM
CVSS:5.5(Medium)

An Origin Validation Error vulnerability in Bitdefender Safepay allows an attacker to manipulate the browser's file upload capability into accessing other files in the same directory or sub-directorie...

CWE-3462020

CVE-2022-40140

MEDIUM
CVSS:5.5(Medium)

An origin validation error vulnerability in Trend Micro Apex One and Apex One as a Service could allow a local attacker to cause a denial-of-service on affected installations. Please note: an attacker...

CWE-3462022