CVE-2023-41977Apple IOS AND Ipados vulnerability

4 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.2%
top 61.95%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Apple IOS AND IpadosApple MacosApple Ipados+3 more
Timeline
PublishedOct 25

Description

The issue was addressed with improved handling of caches. This issue is fixed in macOS Sonoma 14.1, iOS 16.7.2 and iPadOS 16.7.2. Visiting a malicious website may reveal browsing history.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages7 packages

Appleapple/macos_sonoma14.1
CVEListV5apple/macosunspecified14.1
NVDapple/macos14.014.1
NVDapple/ipados< 16.7.2
CVEListV5apple/ios_and_ipadosunspecified16.7

🔴Vulnerability Details

1
GHSA
GHSA-83px-x9cj-8f5g: The issue was addressed with improved handling of caches2023-10-25

📋Vendor Advisories

2
Apple
CVE-2023-41977: iOS 16.7.2 and iPadOS 16.7.22023-10-25
Apple
CVE-2023-41977: macOS Sonoma 14.12023-10-25