CVE-2023-27965
First published: Mon Mar 27 2023(Updated: )
A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Ventura 13.3, Studio Display Firmware Update 16.4. An app may be able to execute arbitrary code with kernel privileges
Credit: Proteas Pangu LabProteas Pangu Lab product-security@apple.com product-security@apple.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple macOS Ventura | <13.3 | 13.3 |
| Apple Studio Display Firmware Update | <16.4 | 16.4 |
| Apple macOS | >=13.0<13.3 | |
| Apple Studio Display Firmware | <16.4 | |
| Apple Studio Display |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Peer vulnerabilities
(Found alongside the following vulnerabilities)
- CVE-2023-27968
- CVE-2023-28209
- CVE-2023-28210
- CVE-2023-28211
- CVE-2023-28212
- CVE-2023-28213
- CVE-2023-28214
- CVE-2023-28215
- CVE-2023-32356
- CVE-2023-23532
- CVE-2023-23527
- CVE-2023-27931
- CVE-2023-28179
- CVE-2023-27951
- CVE-2023-27961
- CVE-2023-23543
- CVE-2023-23534
- CVE-2023-27955
- CVE-2023-27936
- CVE-2023-28181
- CVE-2023-32426
- CVE-2022-43551
- CVE-2022-43552
- CVE-2023-27934
- CVE-2023-28180
- CVE-2023-27935
- CVE-2023-27953
- CVE-2023-27958
- CVE-2023-27965
- CVE-2023-28190
- CVE-2023-28195
- CVE-2023-23537
- CVE-2023-27956
- CVE-2023-27937
- CVE-2023-23526
- CVE-2023-27928
- CVE-2023-27939
- CVE-2023-27947
- CVE-2023-27948
- CVE-2023-23535
- CVE-2023-27929
- CVE-2023-27946
- CVE-2023-27957
- CVE-2023-28187
- CVE-2023-28199
- CVE-2023-23536
- CVE-2023-23514
- CVE-2023-27969
- CVE-2023-27933
- CVE-2023-27941
- CVE-2023-28200
- CVE-2023-27943
- CVE-2023-23525
- CVE-2023-28189
- CVE-2023-27950
- CVE-2023-27949
- CVE-2023-28182
- CVE-2023-23538
- CVE-2023-27962
- CVE-2023-23523
- CVE-2023-27942
- CVE-2023-32362
- CVE-2023-27952
- CVE-2023-23533
- CVE-2023-28178
- CVE-2023-27966
- CVE-2023-27963
- CVE-2023-23542
- CVE-2023-28192
- CVE-2023-28188
- CVE-2023-0049
- CVE-2023-0051
- CVE-2023-0054
- CVE-2023-0288
- CVE-2023-0433
- CVE-2023-0512
- CVE-2023-32370
- CVE-2023-28198
- CVE-2023-32435
- CVE-2023-27932
- CVE-2023-27954
- CVE-2023-32358
- CVE-2023-28201
- CVE-2023-27944
Frequently Asked Questions
What is CVE-2023-27965?
CVE-2023-27965 is a memory corruption issue in macOS Ventura and Studio Display Firmware Update that allows an app to execute arbitrary code with kernel privileges.
How is CVE-2023-27965 fixed?
CVE-2023-27965 is fixed in macOS Ventura 13.3 and Studio Display Firmware Update 16.4.
What is the severity of CVE-2023-27965?
CVE-2023-27965 has a severity rating of 7.8 (high).
What is the Common Weakness Enumeration (CWE) for CVE-2023-27965?
CVE-2023-27965 is associated with CWE-787.
Where can I find more information about CVE-2023-27965?
You can find more information about CVE-2023-27965 on the Apple website at the following links: [support.apple.com/en-us/HT213672](support.apple.com/en-us/HT213672) and [support.apple.com/en-us/HT213670](support.apple.com/en-us/HT213670).
- collector/nvd-latest
- collector/apple-support
- agent/first-publish-date
- agent/last-modified-date
- agent/event
- agent/type
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/description
- collector/nvd-api
- agent/software-canonical-lookup-request
- agent/tags
- collector/nvd-index
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/apple
- canonical/apple macos ventura
- canonical/apple studio display firmware update
- canonical/apple macos
- version/apple macos/13.0
- canonical/apple studio display firmware
- canonical/apple studio display