CVE-2023-41076Improper Privilege Management in Apple Macos

CWE-269Improper Privilege Management4 documents4 sources
Severity
7.3HIGHNVD
EPSS
0.1%
top 64.54%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Macos
Timeline
PublishedApr 11

Description

An app may be able to elevate privileges. This issue is fixed in macOS 14. This issue was addressed by removing the vulnerable code.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:NExploitability: 2.1 | Impact: 5.2

Affected Packages2 packages

CVEListV5apple/macosunspecified14
NVDapple/macos< 14.0

🔴Vulnerability Details

2
CVEList
CVE-2023-41076: An app may be able to elevate privileges2025-04-11
GHSA
GHSA-pmvp-2f47-m6wx: An app may be able to elevate privileges2025-04-11

📋Vendor Advisories

1
Apple
CVE-2023-41076: macOS Sonoma 142023-09-26