CVE-2023-40431Apple IOS AND Ipados vulnerability

4 documents4 sources
Severity
7.8HIGHNVD
EPSS
0.1%
top 74.07%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Apple IOS AND IpadosApple IpadosApple Iphone OS
Timeline
PublishedSep 27

Description

The issue was addressed with improved memory handling. This issue is fixed in iOS 17 and iPadOS 17. An app may be able to execute arbitrary code with kernel privileges.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

NVDapple/ipados< 17.0
CVEListV5apple/ios_and_ipadosunspecified17
NVDapple/iphone_os< 17.0

🔴Vulnerability Details

2
GHSA
GHSA-vj2m-98gh-7ppp: The issue was addressed with improved memory handling2023-09-27
CVEList
CVE-2023-40431: The issue was addressed with improved memory handling2023-09-26

📋Vendor Advisories

1
Apple
CVE-2023-40431: iOS 17 and iPadOS 172023-09-18