Apple Discovers Three New Vulnerabilities in macOS Ventura 13.2

Threat Level

Vulnerability Report

For a detailed threat advisory, download the pdf file here

Summary

Apple has updated its macOS Ventura 13.2 advisories to include three new vulnerabilities. One of them is a race condition affecting the crash reporter component, which can allow an attacker to read arbitrary files as root. The other two security holes impact the ‘foundation’ component, allowing an attacker to execute arbitrary code out of its sandbox or with certain elevated privileges. Exploiting these vulnerabilities can lead to code execution and access to sensitive data.