What we found interesting:
1. CVE-2023-35618 - Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
This vulnerability is a security flaw that can potentially allow an attacker to escape the browser's sandbox. The sandbox is a security mechanism that isolates running programs, limiting their access to system resources and preventing them from causing damage.
2. CVE-2023-35628 - Windows MSHTML Platform Remote Code Execution Vulnerability
One of the major threats with this vulnerability is the fact that it doesn't require any user interaction to be exploited.
3. macOS Sonoma 14.1.2 - Memory Corruption Vulnerability
The macOS Sonoma 14.1.2 update addressed a significant memory corruption vulnerability within WebKit, which was reported to have been exploited against older versions of iOS.
The Automox team talks through this Patch Tuesday in our podcast. Or if you haven't hopped on the podcast train yet, read more in our blog post.
