cbcvebase.
CVE-2023-23514
published 2023-02-27

CVE-2023-23514: A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, iOS 16.3.1 and iPadOS…

PriorityP279high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
ITWVulnCheck KEV
Exploited in the wild
EPSS
0.73%
49.4th percentile
A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, iOS 16.3.1 and iPadOS 16.3.1, macOS Ventura 13.2.1, macOS Big Sur 11.7.5. An app may be able to execute arbitrary code with kernel privileges.

Affected

13 ranges
VendorProductVersion rangeFixed in
appleios_16.3.1_and_ipados
appleios_and_ipados>= unspecified < 16.316.3
appleipados< 16.3.116.3.1
appleiphone_os< 16.3.116.3.1
applemacos>= 13.0 < 13.2.113.2.1
applemacos>= unspecified < 13.313.3
applemacos>= unspecified < 12.612.6
applemacos>= unspecified < 11.711.7
applemacos>= unspecified < 13.213.2
applemacos_big_sur
applemacos_monterey
applemacos_ventura
applemacos_ventura

Detection & IOCsextracted from sources · hover to see the quote

  • Target component is the Kernel; monitor for apps attempting to execute arbitrary code with kernel privileges via use-after-free memory corruption on affected Apple platforms (macOS Big Sur, Monterey, Ventura; iOS/iPadOS 16.x)
  • Vulnerability class is use-after-free in the Kernel component; focus detection on kernel memory corruption telemetry, unexpected kernel panics, or privilege escalation from user-space apps on unpatched Apple OS versions
  • ·No public PoC, exploit code, hashes, network indicators, or specific attack tooling were referenced in any of the source documents. All sources are Apple security advisories describing the patch, not active exploitation details. No actionable IOCs can be extracted.
  • ·Affected versions span multiple Apple OS families; detections should account for all unpatched versions: macOS Big Sur < 11.7.5, macOS Monterey < 12.6.4, macOS Ventura < 13.2.1 / 13.3, iOS/iPadOS < 16.3.1

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
vulncheck7.8HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.