CVE-2023-42914Apple IOS AND Ipados vulnerability

11 documents4 sources
Severity
6.3MEDIUMNVD
EPSS
0.0%
top 92.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
11
Apple IOS AND IpadosApple MacosApple Tvos+8 more
Timeline
PublishedDec 12
Latest updateDec 14

Description

The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.2, iOS 17.2 and iPadOS 17.2, watchOS 10.2, macOS Ventura 13.6.3, tvOS 17.2, iOS 16.7.3 and iPadOS 16.7.3, macOS Monterey 12.7.2. An app may be able to break out of its sandbox.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:NExploitability: 1.8 | Impact: 4.0

Affected Packages16 packages

Appleapple/macos_sonoma14.2
Appleapple/macos_ventura13.6.3
Appleapple/macos_monterey12.7.2
CVEListV5apple/macosunspecified13.6+2
NVDapple/macos12.0.012.7.2+2

🔴Vulnerability Details

1
GHSA
GHSA-cc3v-c5j9-63p5: The issue was addressed with improved memory handling2023-12-12

📋Vendor Advisories

7
Apple
CVE-2023-42914: watchOS 10.22023-12-11
Apple
CVE-2023-42914: macOS Monterey 12.7.22023-12-11
Apple
CVE-2023-42914: macOS Sonoma 14.22023-12-11
Apple
CVE-2023-42914: macOS Ventura 13.6.32023-12-11
Apple
CVE-2023-42914: iOS 17.2 and iPadOS 17.22023-12-11

🕵️Threat Intelligence

2
Talos
A personal Year in Review to round out 20232023-12-14
Talos
A personal Year in Review to round out 20232023-12-14
CVE-2023-42914 — Apple IOS AND Ipados vulnerability | cvebase