macOS 11.x < 11.7.3 Multiple Vulnerabilities (HT213603)

critical Nessus Plugin ID 170453

Version 1.4

Mar 9, 2023, 2:20 PM

  • CVSS metrics ("CVSSv2 score" changed from "4.9" to "10.0". "CVSSv2 score" changed from "4.9" to "10.0". "CVSSv2 score" changed from "4.9" to "10.0". "CVSSv2 vector" changed from "CVSS2#AV:L/AC:L/Au:N/C:N/I:C/A:N" to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C". "CVSSv3 score" changed from "5.5" to "9.8". "CVSSv3 vector" changed from "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H". "CVSSv2 vector" changed from "CVSS2#AV:L/AC:L/Au:N/C:N/I:C/A:N" to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C". "CVSSv3 score" changed from "5.5" to "9.8". "CVSSv3 vector" changed from "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H". "CVSSv2 vector" changed from "CVSS2#AV:L/AC:L/Au:N/C:N/I:C/A:N" to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C". "CVSSv3 score" changed from "5.5" to "9.8". "CVSSv3 vector" changed from "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N" to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H". "CVSSv2 vector" changed from "CVSS2#AV:L/AC:L/Au:N/C:N/I:C/A:N" to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C")
  • CVSSv2 score source (changed from "CVE-2023-23508" to "CVE-2023-23518")
  • CVSSv2 severity (based on CVE-2023-23518, severity increased from "Medium" to "High")
  • CVSSv3 score source (set to "CVE-2023-23513")
  • CVSSv3 severity (based on CVE-2023-23513, severity increased from "Medium" to "High")

Version 1.3

Mar 6, 2023, 2:14 PM

  • CVSS metrics ("CVSSv2 score" changed from "2.6" to "4.9". "CVSSv2 score" changed from "2.6" to "4.9". "CVSSv2 score" changed from "2.6" to "4.9". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:H/Au:N/C:N/I:N/A:P" to "CVSS2#AV:L/AC:L/Au:N/C:N/I:C/A:N". "CVSSv3 score" changed from "3.7" to "5.5". "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" to "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:H/Au:N/C:N/I:N/A:P" to "CVSS2#AV:L/AC:L/Au:N/C:N/I:C/A:N". "CVSSv3 score" changed from "3.7" to "5.5". "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" to "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:H/Au:N/C:N/I:N/A:P" to "CVSS2#AV:L/AC:L/Au:N/C:N/I:C/A:N". "CVSSv3 score" changed from "3.7" to "5.5". "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L" to "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:H/Au:N/C:N/I:N/A:P" to "CVSS2#AV:L/AC:L/Au:N/C:N/I:C/A:N")
  • CVSSv2 score source (changed from "CVE-2022-35252" to "CVE-2023-23508")
  • CVSSv3 score source (set to "CVE-2023-23508")
  • CVSSv2 severity (based on CVE-2023-23508, severity increased from "Low" to "Medium")
  • CVSSv3 severity (based on CVE-2023-23508, severity increased from "Low" to "Medium")

Version 1.2

Feb 16, 2023, 6:11 PM

  • IAVM reference

Version 1.1

Jan 27, 2023, 11:57 AM

  • IAVM reference
  • STIG Severity (set to "I")

Version 1.0

Jan 24, 2023, 9:21 AM

  • New

* Changelogs are generally available for changes made after Nov 1, 2022